Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-20225 (GCVE-0-2021-20225)
Vulnerability from cvelistv5
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-03T17:30:07.623Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "name": "FEDORA-2021-cab258a413", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/" }, { "name": "GLSA-202104-05", "tags": [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred" ], "url": "https://security.gentoo.org/glsa/202104-05" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://security.netapp.com/advisory/ntap-20220325-0001/" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "grub2", "vendor": "n/a", "versions": [ { "status": "affected", "version": "grub 2.06" } ] } ], "descriptions": [ { "lang": "en", "value": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability." } ], "problemTypes": [ { "descriptions": [ { "cweId": "CWE-787", "description": "CWE-787", "lang": "en", "type": "CWE" } ] } ], "providerMetadata": { "dateUpdated": "2022-03-25T07:06:26", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "tags": [ "x_refsource_MISC" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "name": "FEDORA-2021-cab258a413", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/" }, { "name": "GLSA-202104-05", "tags": [ "vendor-advisory", "x_refsource_GENTOO" ], "url": "https://security.gentoo.org/glsa/202104-05" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://security.netapp.com/advisory/ntap-20220325-0001/" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2021-20225", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "grub2", "version": { "version_data": [ { "version_value": "grub 2.06" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-787" } ] } ] }, "references": { "reference_data": [ { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "name": "FEDORA-2021-cab258a413", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/" }, { "name": "GLSA-202104-05", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/202104-05" }, { "name": "https://security.netapp.com/advisory/ntap-20220325-0001/", "refsource": "CONFIRM", "url": "https://security.netapp.com/advisory/ntap-20220325-0001/" } ] } } } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2021-20225", "datePublished": "2021-03-03T16:44:26", "dateReserved": "2020-12-17T00:00:00", "dateUpdated": "2024-08-03T17:30:07.623Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "vulnerability-lookup:meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2021-20225\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2021-03-03T17:15:11.973\",\"lastModified\":\"2024-11-21T05:46:09.903\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 un fallo en grub2 en versiones anteriores a 2.06.\u0026#xa0;El analizador de opciones permite a un atacante escribir m\u00e1s all\u00e1 del final de un b\u00fafer asignado a la pila al llamar a determinados comandos con una gran cantidad de formularios de opciones cortos espec\u00edficos.\u0026#xa0;La mayor amenaza de esta vulnerabilidad es la confidencialidad e integridad de los datos, as\u00ed como la disponibilidad del sistema\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":6.7,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.06\",\"matchCriteriaId\":\"01F8D62F-70BB-4718-A095-D68540C17EEA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142AD0DD-4CF3-4D74-9442-459CE3347E3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C8D871B-AEA1-4407-AEE3-47EC782250FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"98381E61-F082-4302-B51F-5648884F998B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D99A687E-EAE6-417E-A88E-D0082BC194CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B353CE99-D57C-465B-AAB0-73EF581127D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7431ABC1-9252-419E-8CC1-311B41360078\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6897676D-53F9-45B3-B27F-7FF9A4C58D33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF77CDCF-B9C9-427D-B2BF-36650FB2148C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21690BAC-2129-4A33-9B48-1F3BF30072A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2FF6D89-9361-45B9-ABCC-1A5E600BD63C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5F7E11E-FB34-4467-8919-2B6BEAABF665\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B76AA310-FEC7-497F-AF04-C3EC1E76C4CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17F256A9-D3B9-4C72-B013-4EFD878BFEA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B09ACF2D-D83F-4A86-8185-9569605D8EE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"825ECE2D-E232-46E0-A047-074B34DB1E97\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E460AA51-FCDA-46B9-AE97-E6676AA5E194\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A930E247-0B43-43CB-98FF-6CE7B8189835\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7CF3019-975D-40BB-A8A4-894E62BD3797\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1924696\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://security.gentoo.org/glsa/202104-05\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220325-0001/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1924696\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202104-05\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220325-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}" } }
RHSA-2021:0696
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0696", "url": "https://access.redhat.com/errata/RHSA-2021:0696" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0696.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:08+00:00", "generator": { "date": "2025-08-29T15:40:08+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0696", "initial_release_date": "2021-03-02T19:23:36+00:00", "revision_history": [ { "date": "2021-03-02T19:23:36+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:23:36+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:08+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product": { "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-90.el8_3.1.src", "product": { "name": "grub2-1:2.02-90.el8_3.1.src", "product_id": "grub2-1:2.02-90.el8_3.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-90.el8_3.1?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-common-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-common-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-90.el8_3.1.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src" }, "product_reference": "grub2-1:2.02-90.el8_3.1.src", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-common-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:0697
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0697", "url": "https://access.redhat.com/errata/RHSA-2021:0697" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0697.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:39:59+00:00", "generator": { "date": "2025-08-29T15:39:59+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0697", "initial_release_date": "2021-03-02T19:28:47+00:00", "revision_history": [ { "date": "2021-03-02T19:28:47+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:28:47+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:39:59+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.2::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-87.el8_2.3.src", "product": { "name": "grub2-1:2.02-87.el8_2.3.src", "product_id": "grub2-1:2.02-87.el8_2.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-87.el8_2.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-common-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-common-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-87.el8_2.3.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src" }, "product_reference": "grub2-1:2.02-87.el8_2.3.src", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-common-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_0704
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0704", "url": "https://access.redhat.com/errata/RHSA-2021:0704" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0704.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2024-12-22T19:11:45+00:00", "generator": { "date": "2024-12-22T19:11:45+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:0704", "initial_release_date": "2021-03-02T19:55:52+00:00", "revision_history": [ { "date": "2021-03-02T19:55:52+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:55:52+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:45+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server AUS (v. 7.2)", "product": { "name": "Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.2::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product": { "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.2::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_2.2.src", "product": { "name": "grub2-1:2.02-0.86.el7_2.2.src", "product_id": "grub2-1:2.02-0.86.el7_2.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_2.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.src", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.src", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:2790
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nThe following packages have been upgraded to a later upstream version: shim (15.4). (BZ#1932411)\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:2790", "url": "https://access.redhat.com/errata/RHSA-2021:2790" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2790.json" } ], "title": "Red Hat Security Advisory: shim and fwupd security update", "tracking": { "current_release_date": "2025-08-29T15:40:32+00:00", "generator": { "date": "2025-08-29T15:40:32+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:2790", "initial_release_date": "2021-07-20T22:22:30+00:00", "revision_history": [ { "date": "2021-07-20T22:22:30+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-07-20T22:22:30+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:32+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.2::baseos" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product": { "name": "Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:8.2::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "shim-0:15.4-2.el8_1.src", "product": { "name": "shim-0:15.4-2.el8_1.src", "product_id": "shim-0:15.4-2.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.src", "product": { "name": "fwupd-0:1.1.4-9.el8_2.src", "product_id": "fwupd-0:1.1.4-9.el8_2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_id": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.aarch64", "product": { "name": "fwupd-0:1.1.4-9.el8_2.aarch64", "product_id": "fwupd-0:1.1.4-9.el8_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_id": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product_id": "shim-x64-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.x86_64", "product": { "name": "fwupd-0:1.1.4-9.el8_2.x86_64", "product_id": "fwupd-0:1.1.4-9.el8_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.ppc64le", "product": { "name": "fwupd-0:1.1.4-9.el8_2.ppc64le", "product_id": "fwupd-0:1.1.4-9.el8_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.s390x", "product": { "name": "fwupd-0:1.1.4-9.el8_2.s390x", "product_id": "fwupd-0:1.1.4-9.el8_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.s390x", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.src", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src" }, "product_reference": "shim-0:15.4-2.el8_1.src", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64" }, "product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-x64-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_2790
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nThe following packages have been upgraded to a later upstream version: shim (15.4). (BZ#1932411)\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:2790", "url": "https://access.redhat.com/errata/RHSA-2021:2790" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2790.json" } ], "title": "Red Hat Security Advisory: shim and fwupd security update", "tracking": { "current_release_date": "2024-12-22T19:11:48+00:00", "generator": { "date": "2024-12-22T19:11:48+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:2790", "initial_release_date": "2021-07-20T22:22:30+00:00", "revision_history": [ { "date": "2021-07-20T22:22:30+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-07-20T22:22:30+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:48+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.2::baseos" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product": { "name": "Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:8.2::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "shim-0:15.4-2.el8_1.src", "product": { "name": "shim-0:15.4-2.el8_1.src", "product_id": "shim-0:15.4-2.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.src", "product": { "name": "fwupd-0:1.1.4-9.el8_2.src", "product_id": "fwupd-0:1.1.4-9.el8_2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_id": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.aarch64", "product": { "name": "fwupd-0:1.1.4-9.el8_2.aarch64", "product_id": "fwupd-0:1.1.4-9.el8_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_id": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product_id": "shim-x64-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.x86_64", "product": { "name": "fwupd-0:1.1.4-9.el8_2.x86_64", "product_id": "fwupd-0:1.1.4-9.el8_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.ppc64le", "product": { "name": "fwupd-0:1.1.4-9.el8_2.ppc64le", "product_id": "fwupd-0:1.1.4-9.el8_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.s390x", "product": { "name": "fwupd-0:1.1.4-9.el8_2.s390x", "product_id": "fwupd-0:1.1.4-9.el8_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.s390x", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.src", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src" }, "product_reference": "shim-0:15.4-2.el8_1.src", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64" }, "product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-x64-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:2566
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for fwupd is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The fwupd packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:2566", "url": "https://access.redhat.com/errata/RHSA-2021:2566" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2566.json" } ], "title": "Red Hat Security Advisory: fwupd security update", "tracking": { "current_release_date": "2025-08-29T15:40:24+00:00", "generator": { "date": "2025-08-29T15:40:24+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:2566", "initial_release_date": "2021-06-29T16:36:26+00:00", "revision_history": [ { "date": "2021-06-29T16:36:26+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-06-29T16:36:26+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:24+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product": { "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.src", "product": { "name": "fwupd-0:1.5.9-1.el8_4.src", "product_id": "fwupd-0:1.5.9-1.el8_4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.ppc64le", "product": { "name": "fwupd-0:1.5.9-1.el8_4.ppc64le", "product_id": "fwupd-0:1.5.9-1.el8_4.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.ppc64le", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.src", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:0704
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0704", "url": "https://access.redhat.com/errata/RHSA-2021:0704" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0704.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:39+00:00", "generator": { "date": "2025-08-29T15:40:39+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0704", "initial_release_date": "2021-03-02T19:55:52+00:00", "revision_history": [ { "date": "2021-03-02T19:55:52+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:55:52+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:39+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server AUS (v. 7.2)", "product": { "name": "Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.2::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product": { "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.2::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_2.2.src", "product": { "name": "grub2-1:2.02-0.86.el7_2.2.src", "product_id": "grub2-1:2.02-0.86.el7_2.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_2.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.src", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.src", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:0701
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0701", "url": "https://access.redhat.com/errata/RHSA-2021:0701" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0701.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:41:02+00:00", "generator": { "date": "2025-08-29T15:41:02+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0701", "initial_release_date": "2021-03-02T21:13:27+00:00", "revision_history": [ { "date": "2021-03-02T21:13:27+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T21:13:27+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:41:02+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product": { "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.src", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.src", "product_id": "grub2-1:2.02-0.86.el7_6.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:3675
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nThe following packages have been upgraded to a later upstream version: shim (15.4). (BZ#1932410)\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:3675", "url": "https://access.redhat.com/errata/RHSA-2021:3675" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_3675.json" } ], "title": "Red Hat Security Advisory: shim and fwupd security update", "tracking": { "current_release_date": "2025-08-29T15:41:01+00:00", "generator": { "date": "2025-08-29T15:41:01+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:3675", "initial_release_date": "2021-09-28T14:40:21+00:00", "revision_history": [ { "date": "2021-09-28T14:40:21+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-09-28T14:40:21+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:41:01+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.1::baseos" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product": { "name": "Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:8.1::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "shim-0:15.4-2.el8_1.src", "product": { "name": "shim-0:15.4-2.el8_1.src", "product_id": "shim-0:15.4-2.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.src", "product": { "name": "fwupd-0:1.1.4-4.el8_1.src", "product_id": "fwupd-0:1.1.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_id": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.aarch64", "product": { "name": "fwupd-0:1.1.4-4.el8_1.aarch64", "product_id": "fwupd-0:1.1.4-4.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_id": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product_id": "shim-x64-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.x86_64", "product": { "name": "fwupd-0:1.1.4-4.el8_1.x86_64", "product_id": "fwupd-0:1.1.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.ppc64le", "product": { "name": "fwupd-0:1.1.4-4.el8_1.ppc64le", "product_id": "fwupd-0:1.1.4-4.el8_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.s390x", "product": { "name": "fwupd-0:1.1.4-4.el8_1.s390x", "product_id": "fwupd-0:1.1.4-4.el8_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.s390x", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.src", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src" }, "product_reference": "shim-0:15.4-2.el8_1.src", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64" }, "product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-x64-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:0703
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0703", "url": "https://access.redhat.com/errata/RHSA-2021:0703" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0703.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:32+00:00", "generator": { "date": "2025-08-29T15:40:32+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0703", "initial_release_date": "2021-03-02T19:39:02+00:00", "revision_history": [ { "date": "2021-03-02T19:39:02+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:39:02+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:32+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server AUS (v. 7.3)", "product": { "name": "Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.3::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product": { "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.3::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_3.2.src", "product": { "name": "grub2-1:2.02-0.86.el7_3.2.src", "product_id": "grub2-1:2.02-0.86.el7_3.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_3.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.src", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.src", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:0702
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0702", "url": "https://access.redhat.com/errata/RHSA-2021:0702" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0702.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:24+00:00", "generator": { "date": "2025-08-29T15:40:24+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0702", "initial_release_date": "2021-03-02T20:14:17+00:00", "revision_history": [ { "date": "2021-03-02T20:14:17+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T20:14:17+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:24+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server AUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server E4S (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_e4s:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_e4s:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server TUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_tus:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_tus:7.4::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_4.2.src", "product": { "name": "grub2-1:2.02-0.86.el7_4.2.src", "product_id": "grub2-1:2.02-0.86.el7_4.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:1734
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:1734", "url": "https://access.redhat.com/errata/RHSA-2021:1734" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/", "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1734.json" } ], "title": "Red Hat Security Advisory: shim security update", "tracking": { "current_release_date": "2025-08-29T15:42:06+00:00", "generator": { "date": "2025-08-29T15:42:06+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:1734", "initial_release_date": "2021-05-18T13:47:25+00:00", "revision_history": [ { "date": "2021-05-18T13:47:25+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-05-18T13:47:25+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:42:06+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat CodeReady Linux Builder (v. 8)", "product": { "name": "Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::crb" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product": { "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-0:15.4-2.el8_1.src", "product": { "name": "shim-0:15.4-2.el8_1.src", "product_id": "shim-0:15.4-2.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_id": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_id": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product_id": "shim-x64-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src" }, "product_reference": "shim-0:15.4-2.el8_1.src", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64" }, "product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-x64-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "relates_to_product_reference": "CRB-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src", "relates_to_product_reference": "CRB-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src", "relates_to_product_reference": "CRB-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "relates_to_product_reference": "CRB-8.4.0.GA" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:0704
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0704", "url": "https://access.redhat.com/errata/RHSA-2021:0704" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0704.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:39+00:00", "generator": { "date": "2025-08-29T15:40:39+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0704", "initial_release_date": "2021-03-02T19:55:52+00:00", "revision_history": [ { "date": "2021-03-02T19:55:52+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:55:52+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:39+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server AUS (v. 7.2)", "product": { "name": "Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.2::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product": { "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.2::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_2.2.src", "product": { "name": "grub2-1:2.02-0.86.el7_2.2.src", "product_id": "grub2-1:2.02-0.86.el7_2.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_2.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_2.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_2.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.src", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)", "product_id": "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.src", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)", "product_id": "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "relates_to_product_reference": "7Server-optional-7.2.AUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:55:52+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0704" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.src", "7Server-optional-7.2.AUS:grub2-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-common-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-debuginfo-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-ia32-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-efi-x64-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-pc-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-pc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_2.2.noarch", "7Server-optional-7.2.AUS:grub2-tools-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-extra-1:2.02-0.86.el7_2.2.x86_64", "7Server-optional-7.2.AUS:grub2-tools-minimal-1:2.02-0.86.el7_2.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_0698
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0698", "url": "https://access.redhat.com/errata/RHSA-2021:0698" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0698.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2024-12-22T19:11:24+00:00", "generator": { "date": "2024-12-22T19:11:24+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:0698", "initial_release_date": "2021-03-02T19:19:40+00:00", "revision_history": [ { "date": "2021-03-02T19:19:40+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:19:40+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:24+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.1::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-87.el8_1.2.src", "product": { "name": "grub2-1:2.02-87.el8_1.2.src", "product_id": "grub2-1:2.02-87.el8_1.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-87.el8_1.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-common-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-common-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-87.el8_1.2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src" }, "product_reference": "grub2-1:2.02-87.el8_1.2.src", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-common-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:0703
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0703", "url": "https://access.redhat.com/errata/RHSA-2021:0703" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0703.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:32+00:00", "generator": { "date": "2025-08-29T15:40:32+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0703", "initial_release_date": "2021-03-02T19:39:02+00:00", "revision_history": [ { "date": "2021-03-02T19:39:02+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:39:02+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:32+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server AUS (v. 7.3)", "product": { "name": "Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.3::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product": { "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.3::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_3.2.src", "product": { "name": "grub2-1:2.02-0.86.el7_3.2.src", "product_id": "grub2-1:2.02-0.86.el7_3.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_3.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.src", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.src", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:3675
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nThe following packages have been upgraded to a later upstream version: shim (15.4). (BZ#1932410)\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:3675", "url": "https://access.redhat.com/errata/RHSA-2021:3675" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_3675.json" } ], "title": "Red Hat Security Advisory: shim and fwupd security update", "tracking": { "current_release_date": "2025-08-29T15:41:01+00:00", "generator": { "date": "2025-08-29T15:41:01+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:3675", "initial_release_date": "2021-09-28T14:40:21+00:00", "revision_history": [ { "date": "2021-09-28T14:40:21+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-09-28T14:40:21+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:41:01+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.1::baseos" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product": { "name": "Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:8.1::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "shim-0:15.4-2.el8_1.src", "product": { "name": "shim-0:15.4-2.el8_1.src", "product_id": "shim-0:15.4-2.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.src", "product": { "name": "fwupd-0:1.1.4-4.el8_1.src", "product_id": "fwupd-0:1.1.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_id": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.aarch64", "product": { "name": "fwupd-0:1.1.4-4.el8_1.aarch64", "product_id": "fwupd-0:1.1.4-4.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_id": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product_id": "shim-x64-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.x86_64", "product": { "name": "fwupd-0:1.1.4-4.el8_1.x86_64", "product_id": "fwupd-0:1.1.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.ppc64le", "product": { "name": "fwupd-0:1.1.4-4.el8_1.ppc64le", "product_id": "fwupd-0:1.1.4-4.el8_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.s390x", "product": { "name": "fwupd-0:1.1.4-4.el8_1.s390x", "product_id": "fwupd-0:1.1.4-4.el8_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.s390x", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.src", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src" }, "product_reference": "shim-0:15.4-2.el8_1.src", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64" }, "product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-x64-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:0701
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0701", "url": "https://access.redhat.com/errata/RHSA-2021:0701" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0701.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:41:02+00:00", "generator": { "date": "2025-08-29T15:41:02+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0701", "initial_release_date": "2021-03-02T21:13:27+00:00", "revision_history": [ { "date": "2021-03-02T21:13:27+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T21:13:27+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:41:02+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product": { "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.src", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.src", "product_id": "grub2-1:2.02-0.86.el7_6.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:0702
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0702", "url": "https://access.redhat.com/errata/RHSA-2021:0702" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0702.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:24+00:00", "generator": { "date": "2025-08-29T15:40:24+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0702", "initial_release_date": "2021-03-02T20:14:17+00:00", "revision_history": [ { "date": "2021-03-02T20:14:17+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T20:14:17+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:24+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server AUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server E4S (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_e4s:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_e4s:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server TUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_tus:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_tus:7.4::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_4.2.src", "product": { "name": "grub2-1:2.02-0.86.el7_4.2.src", "product_id": "grub2-1:2.02-0.86.el7_4.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_0696
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0696", "url": "https://access.redhat.com/errata/RHSA-2021:0696" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0696.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2024-12-22T19:11:17+00:00", "generator": { "date": "2024-12-22T19:11:17+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:0696", "initial_release_date": "2021-03-02T19:23:36+00:00", "revision_history": [ { "date": "2021-03-02T19:23:36+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:23:36+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:17+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product": { "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-90.el8_3.1.src", "product": { "name": "grub2-1:2.02-90.el8_3.1.src", "product_id": "grub2-1:2.02-90.el8_3.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-90.el8_3.1?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-common-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-common-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-90.el8_3.1.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src" }, "product_reference": "grub2-1:2.02-90.el8_3.1.src", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-common-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:0696
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0696", "url": "https://access.redhat.com/errata/RHSA-2021:0696" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0696.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:08+00:00", "generator": { "date": "2025-08-29T15:40:08+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0696", "initial_release_date": "2021-03-02T19:23:36+00:00", "revision_history": [ { "date": "2021-03-02T19:23:36+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:23:36+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:08+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product": { "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-90.el8_3.1.src", "product": { "name": "grub2-1:2.02-90.el8_3.1.src", "product_id": "grub2-1:2.02-90.el8_3.1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-90.el8_3.1?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-common-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-common-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-90.el8_3.1?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=aarch64\u0026epoch=1" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-90.el8_3.1?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-90.el8_3.1.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src" }, "product_reference": "grub2-1:2.02-90.el8_3.1.src", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-common-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-pc-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64", "relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:23:36+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0696" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.3.0.Z.MAIN:grub2-1:2.02-90.el8_3.1.src", "BaseOS-8.3.0.Z.MAIN:grub2-common-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-debugsource-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-cdboot-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-aa64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-ia32-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-cdboot-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-efi-x64-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-pc-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-pc-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-ppc64le-modules-1:2.02-90.el8_3.1.noarch", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-efi-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-extra-debuginfo-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-1:2.02-90.el8_3.1.x86_64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.aarch64", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.ppc64le", "BaseOS-8.3.0.Z.MAIN:grub2-tools-minimal-debuginfo-1:2.02-90.el8_3.1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:0700
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.7 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0700", "url": "https://access.redhat.com/errata/RHSA-2021:0700" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0700.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:47+00:00", "generator": { "date": "2025-08-29T15:40:47+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0700", "initial_release_date": "2021-03-02T21:02:32+00:00", "revision_history": [ { "date": "2021-03-02T21:02:32+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T21:02:32+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:47+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.src", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.src", "product_id": "grub2-1:2.02-0.86.el7_7.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:1734
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:1734", "url": "https://access.redhat.com/errata/RHSA-2021:1734" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/", "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1734.json" } ], "title": "Red Hat Security Advisory: shim security update", "tracking": { "current_release_date": "2025-08-29T15:42:06+00:00", "generator": { "date": "2025-08-29T15:42:06+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:1734", "initial_release_date": "2021-05-18T13:47:25+00:00", "revision_history": [ { "date": "2021-05-18T13:47:25+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-05-18T13:47:25+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:42:06+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat CodeReady Linux Builder (v. 8)", "product": { "name": "Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::crb" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product": { "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-0:15.4-2.el8_1.src", "product": { "name": "shim-0:15.4-2.el8_1.src", "product_id": "shim-0:15.4-2.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_id": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_id": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product_id": "shim-x64-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src" }, "product_reference": "shim-0:15.4-2.el8_1.src", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64" }, "product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-x64-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "relates_to_product_reference": "CRB-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src", "relates_to_product_reference": "CRB-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src", "relates_to_product_reference": "CRB-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "relates_to_product_reference": "CRB-8.4.0.GA" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_0701
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0701", "url": "https://access.redhat.com/errata/RHSA-2021:0701" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0701.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2024-12-22T19:12:05+00:00", "generator": { "date": "2024-12-22T19:12:05+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:0701", "initial_release_date": "2021-03-02T21:13:27+00:00", "revision_history": [ { "date": "2021-03-02T21:13:27+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T21:13:27+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:12:05+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product": { "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product": { "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.6::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_6.3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.src", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.src", "product_id": "grub2-1:2.02-0.86.el7_6.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_6.3?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)", "product_id": "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)", "product_id": "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)", "product_id": "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)", "product_id": "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)", "product_id": "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-7.6.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.src", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)", "product_id": "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "relates_to_product_reference": "7Server-optional-Alt-7.6-EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:13:27+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0701" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7ComputeNode-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7ComputeNode-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-7.6.EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-7.6.EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.src", "7Server-optional-Alt-7.6-EUS:grub2-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-common-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-debuginfo-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-pc-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-pc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-ppc64-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_6.3.noarch", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-extra-1:2.02-0.86.el7_6.3.x86_64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.ppc64le", "7Server-optional-Alt-7.6-EUS:grub2-tools-minimal-1:2.02-0.86.el7_6.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:2566
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for fwupd is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The fwupd packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:2566", "url": "https://access.redhat.com/errata/RHSA-2021:2566" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2566.json" } ], "title": "Red Hat Security Advisory: fwupd security update", "tracking": { "current_release_date": "2025-08-29T15:40:24+00:00", "generator": { "date": "2025-08-29T15:40:24+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:2566", "initial_release_date": "2021-06-29T16:36:26+00:00", "revision_history": [ { "date": "2021-06-29T16:36:26+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-06-29T16:36:26+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:24+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product": { "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.src", "product": { "name": "fwupd-0:1.5.9-1.el8_4.src", "product_id": "fwupd-0:1.5.9-1.el8_4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.ppc64le", "product": { "name": "fwupd-0:1.5.9-1.el8_4.ppc64le", "product_id": "fwupd-0:1.5.9-1.el8_4.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.ppc64le", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.src", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:0699
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0699", "url": "https://access.redhat.com/errata/RHSA-2021:0699" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0699.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:54+00:00", "generator": { "date": "2025-08-29T15:40:54+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0699", "initial_release_date": "2021-03-02T20:57:50+00:00", "revision_history": [ { "date": "2021-03-02T20:57:50+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T20:57:50+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:54+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Client Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.src", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.src", "product_id": "grub2-1:2.02-0.87.el7_9.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_2566
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for fwupd is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The fwupd packages provide a service that allows session software to update device firmware.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:2566", "url": "https://access.redhat.com/errata/RHSA-2021:2566" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2566.json" } ], "title": "Red Hat Security Advisory: fwupd security update", "tracking": { "current_release_date": "2024-12-22T19:11:41+00:00", "generator": { "date": "2024-12-22T19:11:41+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:2566", "initial_release_date": "2021-06-29T16:36:26+00:00", "revision_history": [ { "date": "2021-06-29T16:36:26+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-06-29T16:36:26+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:41+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product": { "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.src", "product": { "name": "fwupd-0:1.5.9-1.el8_4.src", "product_id": "fwupd-0:1.5.9-1.el8_4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "product": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.ppc64le", "product": { "name": "fwupd-0:1.5.9-1.el8_4.ppc64le", "product_id": "fwupd-0:1.5.9-1.el8_4.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "product": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.5.9-1.el8_4?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.5.9-1.el8_4?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.5.9-1.el8_4?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "product": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "product_id": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-tests-debuginfo@1.5.9-1.el8_4?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.ppc64le", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.src", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64" }, "product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x" }, "product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" }, "product_reference": "fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.Z.MAIN.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-06-29T16:36:26+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2566" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.src", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debuginfo-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.ppc64le", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-debugsource-0:1.5.9-1.el8_4.x86_64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.aarch64", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.s390x", "BaseOS-8.4.0.Z.MAIN.EUS:fwupd-tests-debuginfo-0:1.5.9-1.el8_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021:0698
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0698", "url": "https://access.redhat.com/errata/RHSA-2021:0698" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0698.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:16+00:00", "generator": { "date": "2025-08-29T15:40:16+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0698", "initial_release_date": "2021-03-02T19:19:40+00:00", "revision_history": [ { "date": "2021-03-02T19:19:40+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:19:40+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:16+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.1::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-87.el8_1.2.src", "product": { "name": "grub2-1:2.02-87.el8_1.2.src", "product_id": "grub2-1:2.02-87.el8_1.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-87.el8_1.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-common-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-common-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-87.el8_1.2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src" }, "product_reference": "grub2-1:2.02-87.el8_1.2.src", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-common-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_3675
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nThe following packages have been upgraded to a later upstream version: shim (15.4). (BZ#1932410)\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:3675", "url": "https://access.redhat.com/errata/RHSA-2021:3675" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_3675.json" } ], "title": "Red Hat Security Advisory: shim and fwupd security update", "tracking": { "current_release_date": "2024-12-22T19:11:54+00:00", "generator": { "date": "2024-12-22T19:11:54+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:3675", "initial_release_date": "2021-09-28T14:40:21+00:00", "revision_history": [ { "date": "2021-09-28T14:40:21+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-09-28T14:40:21+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:54+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.1::baseos" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product": { "name": "Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:8.1::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "shim-0:15.4-2.el8_1.src", "product": { "name": "shim-0:15.4-2.el8_1.src", "product_id": "shim-0:15.4-2.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.src", "product": { "name": "fwupd-0:1.1.4-4.el8_1.src", "product_id": "fwupd-0:1.1.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_id": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.aarch64", "product": { "name": "fwupd-0:1.1.4-4.el8_1.aarch64", "product_id": "fwupd-0:1.1.4-4.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_id": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product_id": "shim-x64-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.x86_64", "product": { "name": "fwupd-0:1.1.4-4.el8_1.x86_64", "product_id": "fwupd-0:1.1.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.ppc64le", "product": { "name": "fwupd-0:1.1.4-4.el8_1.ppc64le", "product_id": "fwupd-0:1.1.4-4.el8_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-4.el8_1.s390x", "product": { "name": "fwupd-0:1.1.4-4.el8_1.s390x", "product_id": "fwupd-0:1.1.4-4.el8_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-4.el8_1?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "product": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "product_id": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-4.el8_1?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "product": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "product_id": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-4.el8_1?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.s390x", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.src", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64" }, "product_reference": "fwupd-0:1.1.4-4.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64" }, "product_reference": "fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src" }, "product_reference": "shim-0:15.4-2.el8_1.src", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64" }, "product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-x64-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.1)", "product_id": "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "relates_to_product_reference": "CRB-8.1.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-09-28T14:40:21+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:3675" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.src", "BaseOS-8.1.0.Z.EUS:fwupd-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debuginfo-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.ppc64le", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.s390x", "BaseOS-8.1.0.Z.EUS:fwupd-debugsource-0:1.1.4-4.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.1.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.1.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.1.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.1.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.1.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_0702
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0702", "url": "https://access.redhat.com/errata/RHSA-2021:0702" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0702.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2024-12-22T19:11:31+00:00", "generator": { "date": "2024-12-22T19:11:31+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:0702", "initial_release_date": "2021-03-02T20:14:17+00:00", "revision_history": [ { "date": "2021-03-02T20:14:17+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T20:14:17+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:31+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server AUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server E4S (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_e4s:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_e4s:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server TUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_tus:7.4::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product": { "name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_tus:7.4::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_4.2.src", "product": { "name": "grub2-1:2.02-0.86.el7_4.2.src", "product_id": "grub2-1:2.02-0.86.el7_4.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_4.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_4.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_4.2?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)", "product_id": "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)", "product_id": "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)", "product_id": "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)", "product_id": "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)", "product_id": "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.E4S" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.src", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)", "product_id": "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "relates_to_product_reference": "7Server-optional-7.4.TUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:14:17+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0702" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.AUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.AUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.AUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.E4S:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-ppc64le-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.ppc64le", "7Server-optional-7.4.E4S:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.src", "7Server-optional-7.4.TUS:grub2-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-common-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-debuginfo-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-ia32-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-efi-x64-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-efi-x64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-pc-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-pc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-ppc64le-modules-1:2.02-0.86.el7_4.2.noarch", "7Server-optional-7.4.TUS:grub2-tools-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-extra-1:2.02-0.86.el7_4.2.x86_64", "7Server-optional-7.4.TUS:grub2-tools-minimal-1:2.02-0.86.el7_4.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:0698
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0698", "url": "https://access.redhat.com/errata/RHSA-2021:0698" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0698.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:16+00:00", "generator": { "date": "2025-08-29T15:40:16+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0698", "initial_release_date": "2021-03-02T19:19:40+00:00", "revision_history": [ { "date": "2021-03-02T19:19:40+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:19:40+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:16+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.1::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-87.el8_1.2.src", "product": { "name": "grub2-1:2.02-87.el8_1.2.src", "product_id": "grub2-1:2.02-87.el8_1.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-87.el8_1.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-common-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-common-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_1.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=aarch64\u0026epoch=1" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_1.2?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-87.el8_1.2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src" }, "product_reference": "grub2-1:2.02-87.el8_1.2.src", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-common-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)", "product_id": "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64", "relates_to_product_reference": "BaseOS-8.1.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:19:40+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0698" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.1.0.Z.EUS:grub2-1:2.02-87.el8_1.2.src", "BaseOS-8.1.0.Z.EUS:grub2-common-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-pc-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_1.2.noarch", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_1.2.x86_64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.aarch64", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.ppc64le", "BaseOS-8.1.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_1.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_0700
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.7 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0700", "url": "https://access.redhat.com/errata/RHSA-2021:0700" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0700.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2024-12-22T19:11:52+00:00", "generator": { "date": "2024-12-22T19:11:52+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:0700", "initial_release_date": "2021-03-02T21:02:32+00:00", "revision_history": [ { "date": "2021-03-02T21:02:32+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T21:02:32+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:52+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.src", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.src", "product_id": "grub2-1:2.02-0.86.el7_7.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_0703
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0703", "url": "https://access.redhat.com/errata/RHSA-2021:0703" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0703.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2024-12-22T19:11:38+00:00", "generator": { "date": "2024-12-22T19:11:38+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:0703", "initial_release_date": "2021-03-02T19:39:02+00:00", "revision_history": [ { "date": "2021-03-02T19:39:02+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:39:02+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:38+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server AUS (v. 7.3)", "product": { "name": "Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.3::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product": { "name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_aus:7.3::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_3.2.src", "product": { "name": "grub2-1:2.02-0.86.el7_3.2.src", "product_id": "grub2-1:2.02-0.86.el7_3.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_3.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_3.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_3.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.src", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)", "product_id": "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.src", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)", "product_id": "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "relates_to_product_reference": "7Server-optional-7.3.AUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:39:02+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0703" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.src", "7Server-optional-7.3.AUS:grub2-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-common-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-debuginfo-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-ia32-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-efi-x64-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-efi-x64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-pc-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-pc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-ppc64le-modules-1:2.02-0.86.el7_3.2.noarch", "7Server-optional-7.3.AUS:grub2-tools-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-extra-1:2.02-0.86.el7_3.2.x86_64", "7Server-optional-7.3.AUS:grub2-tools-minimal-1:2.02-0.86.el7_3.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_0697
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0697", "url": "https://access.redhat.com/errata/RHSA-2021:0697" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0697.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2024-12-22T19:11:10+00:00", "generator": { "date": "2024-12-22T19:11:10+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:0697", "initial_release_date": "2021-03-02T19:28:47+00:00", "revision_history": [ { "date": "2021-03-02T19:28:47+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:28:47+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:10+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.2::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-87.el8_2.3.src", "product": { "name": "grub2-1:2.02-87.el8_2.3.src", "product_id": "grub2-1:2.02-87.el8_2.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-87.el8_2.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-common-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-common-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-87.el8_2.3.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src" }, "product_reference": "grub2-1:2.02-87.el8_2.3.src", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-common-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:2790
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nThe fwupd packages provide a service that allows session software to update device firmware.\n\nThe following packages have been upgraded to a later upstream version: shim (15.4). (BZ#1932411)\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:2790", "url": "https://access.redhat.com/errata/RHSA-2021:2790" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_2790.json" } ], "title": "Red Hat Security Advisory: shim and fwupd security update", "tracking": { "current_release_date": "2025-08-29T15:40:32+00:00", "generator": { "date": "2025-08-29T15:40:32+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:2790", "initial_release_date": "2021-07-20T22:22:30+00:00", "revision_history": [ { "date": "2021-07-20T22:22:30+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-07-20T22:22:30+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:32+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.2::baseos" } } }, { "category": "product_name", "name": "Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product": { "name": "Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_eus:8.2::crb" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "shim-0:15.4-2.el8_1.src", "product": { "name": "shim-0:15.4-2.el8_1.src", "product_id": "shim-0:15.4-2.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.src", "product": { "name": "fwupd-0:1.1.4-9.el8_2.src", "product_id": "fwupd-0:1.1.4-9.el8_2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_id": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.aarch64", "product": { "name": "fwupd-0:1.1.4-9.el8_2.aarch64", "product_id": "fwupd-0:1.1.4-9.el8_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=aarch64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_id": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product_id": "shim-x64-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.x86_64", "product": { "name": "fwupd-0:1.1.4-9.el8_2.x86_64", "product_id": "fwupd-0:1.1.4-9.el8_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=x86_64" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.ppc64le", "product": { "name": "fwupd-0:1.1.4-9.el8_2.ppc64le", "product_id": "fwupd-0:1.1.4-9.el8_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=ppc64le" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=ppc64le" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "fwupd-0:1.1.4-9.el8_2.s390x", "product": { "name": "fwupd-0:1.1.4-9.el8_2.s390x", "product_id": "fwupd-0:1.1.4-9.el8_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd@1.1.4-9.el8_2?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "product": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "product_id": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debugsource@1.1.4-9.el8_2?arch=s390x" } } }, { "category": "product_version", "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "product": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "product_id": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/fwupd-debuginfo@1.1.4-9.el8_2?arch=s390x" } } } ], "category": "architecture", "name": "s390x" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.s390x", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.src", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64" }, "product_reference": "fwupd-0:1.1.4-9.el8_2.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64" }, "product_reference": "fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64" }, "product_reference": "fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src" }, "product_reference": "shim-0:15.4-2.el8_1.src", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64" }, "product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-x64-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v. 8.2)", "product_id": "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "relates_to_product_reference": "CRB-8.2.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-07-20T22:22:30+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:2790" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.src", "BaseOS-8.2.0.Z.EUS:fwupd-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debuginfo-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.aarch64", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.ppc64le", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.s390x", "BaseOS-8.2.0.Z.EUS:fwupd-debugsource-0:1.1.4-9.el8_2.x86_64", "BaseOS-8.2.0.Z.EUS:shim-0:15.4-2.el8_1.src", "BaseOS-8.2.0.Z.EUS:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.2.0.Z.EUS:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.2.0.Z.EUS:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.2.0.Z.EUS:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.2.0.Z.EUS:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:0700
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.7 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0700", "url": "https://access.redhat.com/errata/RHSA-2021:0700" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0700.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:47+00:00", "generator": { "date": "2025-08-29T15:40:47+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0700", "initial_release_date": "2021-03-02T21:02:32+00:00", "revision_history": [ { "date": "2021-03-02T21:02:32+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T21:02:32+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:47+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product": { "name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:7.7::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.src", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.src", "product_id": "grub2-1:2.02-0.86.el7_7.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.86.el7_7.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.86.el7_7.3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "product": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "product_id": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.86.el7_7.3?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.7)", "product_id": "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.7)", "product_id": "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.7)", "product_id": "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.src", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-common-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "relates_to_product_reference": "7Server-optional-7.7.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.7)", "product_id": "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "relates_to_product_reference": "7Server-optional-7.7.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T21:02:32+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0700" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7ComputeNode-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7ComputeNode-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.src", "7Server-optional-7.7.EUS:grub2-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-common-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-debuginfo-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-aa64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-ia32-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-ia32-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-efi-x64-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-cdboot-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-efi-x64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-pc-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-pc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-ppc64-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-ppc64le-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-ppc64le-modules-1:2.02-0.86.el7_7.3.noarch", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-extra-1:2.02-0.86.el7_7.3.x86_64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.ppc64le", "7Server-optional-7.7.EUS:grub2-tools-minimal-1:2.02-0.86.el7_7.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_1734
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:1734", "url": "https://access.redhat.com/errata/RHSA-2021:1734" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/", "url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1734.json" } ], "title": "Red Hat Security Advisory: shim security update", "tracking": { "current_release_date": "2024-12-22T19:12:12+00:00", "generator": { "date": "2024-12-22T19:12:12+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:1734", "initial_release_date": "2021-05-18T13:47:25+00:00", "revision_history": [ { "date": "2021-05-18T13:47:25+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-05-18T13:47:25+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:12:12+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat CodeReady Linux Builder (v. 8)", "product": { "name": "Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA", "product_identification_helper": { "cpe": "cpe:/a:redhat:enterprise_linux:8::crb" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product": { "name": "Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:8::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=src" } } }, { "category": "product_version", "name": "shim-0:15.4-2.el8_1.src", "product": { "name": "shim-0:15.4-2.el8_1.src", "product_id": "shim-0:15.4-2.el8_1.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim@15.4-2.el8_1?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_id": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-aarch64@15-7.el8_1?arch=aarch64" } } }, { "category": "product_version", "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_id": "shim-aa64-0:15.4-2.el8_1.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-aa64@15.4-2.el8_1?arch=aarch64" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_id": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-unsigned-x64@15.4-4.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_id": "shim-ia32-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-ia32@15.4-2.el8_1?arch=x86_64" } } }, { "category": "product_version", "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product": { "name": "shim-x64-0:15.4-2.el8_1.x86_64", "product_id": "shim-x64-0:15.4-2.el8_1.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/shim-x64@15.4-2.el8_1?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "shim-0:15.4-2.el8_1.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src" }, "product_reference": "shim-0:15.4-2.el8_1.src", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-aa64-0:15.4-2.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64" }, "product_reference": "shim-aa64-0:15.4-2.el8_1.aarch64", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-ia32-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-ia32-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-x64-0:15.4-2.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)", "product_id": "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64" }, "product_reference": "shim-x64-0:15.4-2.el8_1.x86_64", "relates_to_product_reference": "BaseOS-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "relates_to_product_reference": "CRB-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-aarch64-0:15-7.el8_1.src as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src" }, "product_reference": "shim-unsigned-aarch64-0:15-7.el8_1.src", "relates_to_product_reference": "CRB-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.src as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.src", "relates_to_product_reference": "CRB-8.4.0.GA" }, { "category": "default_component_of", "full_product_name": { "name": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", "product_id": "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" }, "product_reference": "shim-unsigned-x64-0:15.4-4.el8_1.x86_64", "relates_to_product_reference": "CRB-8.4.0.GA" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-05-18T13:47:25+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:1734" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.4.0.GA:shim-0:15.4-2.el8_1.src", "BaseOS-8.4.0.GA:shim-aa64-0:15.4-2.el8_1.aarch64", "BaseOS-8.4.0.GA:shim-ia32-0:15.4-2.el8_1.x86_64", "BaseOS-8.4.0.GA:shim-x64-0:15.4-2.el8_1.x86_64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.aarch64", "CRB-8.4.0.GA:shim-unsigned-aarch64-0:15-7.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.src", "CRB-8.4.0.GA:shim-unsigned-x64-0:15.4-4.el8_1.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:0697
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0697", "url": "https://access.redhat.com/errata/RHSA-2021:0697" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0697.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:39:59+00:00", "generator": { "date": "2025-08-29T15:39:59+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0697", "initial_release_date": "2021-03-02T19:28:47+00:00", "revision_history": [ { "date": "2021-03-02T19:28:47+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T19:28:47+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:39:59+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product": { "name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS", "product_identification_helper": { "cpe": "cpe:/o:redhat:rhel_eus:8.2::baseos" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-87.el8_2.3.src", "product": { "name": "grub2-1:2.02-87.el8_2.3.src", "product_id": "grub2-1:2.02-87.el8_2.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-87.el8_2.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-common-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-common-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-87.el8_2.3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-cdboot@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=aarch64\u0026epoch=1" } } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-efi-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debugsource@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_id": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal-debuginfo@2.02-87.el8_2.3?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-87.el8_2.3.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src" }, "product_reference": "grub2-1:2.02-87.el8_2.3.src", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-common-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-pc-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)", "product_id": "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" }, "product_reference": "grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64", "relates_to_product_reference": "BaseOS-8.2.0.Z.EUS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T19:28:47+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0697" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "BaseOS-8.2.0.Z.EUS:grub2-1:2.02-87.el8_2.3.src", "BaseOS-8.2.0.Z.EUS:grub2-common-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-debugsource-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-cdboot-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-efi-aa64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-ia32-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-cdboot-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-efi-x64-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-pc-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-pc-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-ppc64le-modules-1:2.02-87.el8_2.3.noarch", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-efi-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-extra-debuginfo-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-1:2.02-87.el8_2.3.x86_64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.aarch64", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.ppc64le", "BaseOS-8.2.0.Z.EUS:grub2-tools-minimal-debuginfo-1:2.02-87.el8_2.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
rhsa-2021_0699
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0699", "url": "https://access.redhat.com/errata/RHSA-2021:0699" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0699.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2024-12-22T19:11:58+00:00", "generator": { "date": "2024-12-22T19:11:58+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.4" } }, "id": "RHSA-2021:0699", "initial_release_date": "2021-03-02T20:57:50+00:00", "revision_history": [ { "date": "2021-03-02T20:57:50+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T20:57:50+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-12-22T19:11:58+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Client Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.src", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.src", "product_id": "grub2-1:2.02-0.87.el7_9.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
RHSA-2021:0699
Vulnerability from csaf_redhat
Notes
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An update for grub2 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", "title": "Topic" }, { "category": "general", "text": "The grub2 packages provide version 2 of the Grand Unified Boot Loader (GRUB), a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices.\n\nSecurity Fix(es):\n\n* grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled (CVE-2020-14372)\n\n* grub2: Use-after-free in rmmod command (CVE-2020-25632)\n\n* grub2: Out-of-bounds write in grub_usb_device_initialize() (CVE-2020-25647)\n\n* grub2: Stack buffer overflow in grub_parser_split_cmdline() (CVE-2020-27749)\n\n* grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled (CVE-2020-27779)\n\n* grub2: Heap out-of-bounds write in short form option parser (CVE-2021-20225)\n\n* grub2: Heap out-of-bounds write due to miscalculation of space required for quoting (CVE-2021-20233)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2021:0699", "url": "https://access.redhat.com/errata/RHSA-2021:0699" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" }, { "category": "external", "summary": "1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0699.json" } ], "title": "Red Hat Security Advisory: grub2 security update", "tracking": { "current_release_date": "2025-08-29T15:40:54+00:00", "generator": { "date": "2025-08-29T15:40:54+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.6.6" } }, "id": "RHSA-2021:0699", "initial_release_date": "2021-03-02T20:57:50+00:00", "revision_history": [ { "date": "2021-03-02T20:57:50+00:00", "number": "1", "summary": "Initial version" }, { "date": "2021-03-02T20:57:50+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2025-08-29T15:40:54+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Client (v. 7)", "product": { "name": "Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Client Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 7)", "product": { "name": "Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 7)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.src", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.src", "product_id": "grub2-1:2.02-0.87.el7_9.2.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-cdboot@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_id": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-cdboot@2.02-0.87.el7_9.2?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-common@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-ia32-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-x64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-pc-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-efi-aa64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "product": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "product_id": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le-modules@2.02-0.87.el7_9.2?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64le@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "product": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=ppc64le\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-ppc64@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-extra@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-tools-minimal@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } }, { "category": "product_version", "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "product": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "product_id": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/grub2-debuginfo@2.02-0.87.el7_9.2?arch=ppc64\u0026epoch=1" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", "product_id": "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", "product_id": "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Client-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", "product_id": "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7ComputeNode-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", "product_id": "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", "product_id": "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Server-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", "product_id": "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.src", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-common-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-common-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch" }, "product_reference": "grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "relates_to_product_reference": "7Workstation-optional-7.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", "product_id": "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" }, "product_reference": "grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "relates_to_product_reference": "7Workstation-optional-7.9.Z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "M\u00e1t\u00e9 Kukri" ] } ], "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "discovery_date": "2020-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1873150" } ], "notes": [ { "category": "description", "text": "A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The kernel further loads and executes the table, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "other", "text": "For a successful attack to occur, the attacker needs to triage the environment to determine where the lockdown variable symbol is placed in memory when the kernel is loaded. Then the SSDT table needs to be written accordingly into this memory position and the grub.cfg file needs to be changed to load the table during the boot time.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "RHBZ#1873150", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1873150" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-14372", "url": "https://www.cve.org/CVERecord?id=CVE-2020-14372" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-14372" }, { "category": "external", "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003", "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2021-003" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled" }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "discovery_date": "2020-09-16T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1879577" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Use-after-free in rmmod command", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "RHBZ#1879577", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879577" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25632", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25632" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25632" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Use-after-free in rmmod command" }, { "acknowledgments": [ { "names": [ "Joseph Tartaro", "Ilja van Sprundel" ], "organization": "IOActive" } ], "cve": "CVE-2020-25647", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2020-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1886936" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Out-of-bounds write in grub_usb_device_initialize()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "RHBZ#1886936", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1886936" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-25647", "url": "https://www.cve.org/CVERecord?id=CVE-2020-25647" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25647" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "PHYSICAL", "availabilityImpact": "HIGH", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Out-of-bounds write in grub_usb_device_initialize()" }, { "acknowledgments": [ { "names": [ "Chris Coulson" ], "organization": "Canonical" } ], "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1899966" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Stack buffer overflow in grub_parser_split_cmdline()", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "RHBZ#1899966", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1899966" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27749", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27749" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27749" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Stack buffer overflow in grub_parser_split_cmdline()" }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "discovery_date": "2020-11-20T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1900698" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "RHBZ#1900698", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1900698" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2020-27779", "url": "https://www.cve.org/CVERecord?id=CVE-2020-27779" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779", "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27779" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: cutmem command allows privileged user to remove memory regions when Secure Boot is enabled" }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1924696" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write in short form option parser", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "RHBZ#1924696", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20225", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20225" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write in short form option parser" }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "discovery_date": "2021-02-08T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1926263" } ], "notes": [ { "category": "description", "text": "A flaw was found in grub2. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability description" }, { "category": "summary", "text": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "RHBZ#1926263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1926263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2021-20233", "url": "https://www.cve.org/CVERecord?id=CVE-2021-20233" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20233" } ], "release_date": "2021-03-02T18:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2021-03-02T20:57:50+00:00", "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", "product_ids": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2021:0699" } ], "scores": [ { "cvss_v3": { "attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Client-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Client-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7ComputeNode-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7ComputeNode-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Server-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Server-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.src", "7Workstation-optional-7.9.Z:grub2-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-common-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-debuginfo-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-aa64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-ia32-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-ia32-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-efi-x64-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-cdboot-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-efi-x64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-pc-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-pc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-ppc64-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-ppc64le-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-ppc64le-modules-1:2.02-0.87.el7_9.2.noarch", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-extra-1:2.02-0.87.el7_9.2.x86_64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.ppc64le", "7Workstation-optional-7.9.Z:grub2-tools-minimal-1:2.02-0.87.el7_9.2.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "grub2: Heap out-of-bounds write due to miscalculation of space required for quoting" } ] }
ghsa-hmmc-9q6p-vgg6
Vulnerability from github
A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
{ "affected": [], "aliases": [ "CVE-2021-20225" ], "database_specific": { "cwe_ids": [ "CWE-787" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2021-03-03T17:15:00Z", "severity": "HIGH" }, "details": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "id": "GHSA-hmmc-9q6p-vgg6", "modified": "2022-05-24T17:43:32Z", "published": "2022-05-24T17:43:32Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "type": "WEB", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R" }, { "type": "WEB", "url": "https://security.gentoo.org/glsa/202104-05" }, { "type": "WEB", "url": "https://security.netapp.com/advisory/ntap-20220325-0001" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }
opensuse-su-2021:0462-1
Vulnerability from csaf_opensuse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for grub2", "title": "Title of the patch" }, { "category": "description", "text": "This update for grub2 fixes the following issues:\n\ngrub2 implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n- Fixed chainloading windows on dual boot machine (bsc#1183073)\n\nThis update was imported from the SUSE:SLE-15-SP2:Update update project.\n ", "title": "Description of the patch" }, { "category": "details", "text": "openSUSE-2021-462", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2021_0462-1.json" }, { "category": "self", "summary": "URL for openSUSE-SU-2021:0462-1", "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XXPYL42MSKRB4D7LRFMW7PBGGLKSJKPS/" }, { "category": "self", "summary": "E-Mail link for openSUSE-SU-2021:0462-1", "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XXPYL42MSKRB4D7LRFMW7PBGGLKSJKPS/" }, { "category": "self", "summary": "SUSE Bug 1175970", "url": "https://bugzilla.suse.com/1175970" }, { "category": "self", "summary": "SUSE Bug 1176711", "url": "https://bugzilla.suse.com/1176711" }, { "category": "self", "summary": "SUSE Bug 1177883", "url": "https://bugzilla.suse.com/1177883" }, { "category": "self", "summary": "SUSE Bug 1179264", "url": "https://bugzilla.suse.com/1179264" }, { "category": "self", "summary": "SUSE Bug 1179265", "url": "https://bugzilla.suse.com/1179265" }, { "category": "self", "summary": "SUSE Bug 1182057", "url": "https://bugzilla.suse.com/1182057" }, { "category": "self", "summary": "SUSE Bug 1182262", "url": "https://bugzilla.suse.com/1182262" }, { "category": "self", "summary": "SUSE Bug 1182263", "url": "https://bugzilla.suse.com/1182263" }, { "category": "self", "summary": "SUSE Bug 1183073", "url": "https://bugzilla.suse.com/1183073" }, { "category": "self", "summary": "SUSE CVE CVE-2020-14372 page", "url": "https://www.suse.com/security/cve/CVE-2020-14372/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25632 page", "url": "https://www.suse.com/security/cve/CVE-2020-25632/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25647 page", "url": "https://www.suse.com/security/cve/CVE-2020-25647/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27749 page", "url": "https://www.suse.com/security/cve/CVE-2020-27749/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27779 page", "url": "https://www.suse.com/security/cve/CVE-2020-27779/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20225 page", "url": "https://www.suse.com/security/cve/CVE-2021-20225/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20233 page", "url": "https://www.suse.com/security/cve/CVE-2021-20233/" } ], "title": "Security update for grub2", "tracking": { "current_release_date": "2021-03-22T11:05:35Z", "generator": { "date": "2021-03-22T11:05:35Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "openSUSE-SU-2021:0462-1", "initial_release_date": "2021-03-22T11:05:35Z", "revision_history": [ { "date": "2021-03-22T11:05:35Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "grub2-2.04-lp152.7.22.7.i586", "product": { "name": "grub2-2.04-lp152.7.22.7.i586", "product_id": "grub2-2.04-lp152.7.22.7.i586" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.04-lp152.7.22.7.i586", "product": { "name": "grub2-branding-upstream-2.04-lp152.7.22.7.i586", "product_id": "grub2-branding-upstream-2.04-lp152.7.22.7.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "grub2-i386-efi-2.04-lp152.7.22.7.noarch", "product": { "name": "grub2-i386-efi-2.04-lp152.7.22.7.noarch", "product_id": "grub2-i386-efi-2.04-lp152.7.22.7.noarch" } }, { "category": "product_version", "name": "grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "product": { "name": "grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "product_id": "grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch" } }, { "category": "product_version", "name": "grub2-i386-pc-2.04-lp152.7.22.7.noarch", "product": { "name": "grub2-i386-pc-2.04-lp152.7.22.7.noarch", "product_id": "grub2-i386-pc-2.04-lp152.7.22.7.noarch" } }, { "category": "product_version", "name": "grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "product": { "name": "grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "product_id": "grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch" } }, { "category": "product_version", "name": "grub2-i386-xen-2.04-lp152.7.22.7.noarch", "product": { "name": "grub2-i386-xen-2.04-lp152.7.22.7.noarch", "product_id": "grub2-i386-xen-2.04-lp152.7.22.7.noarch" } }, { "category": "product_version", "name": "grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "product": { "name": "grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "product_id": "grub2-snapper-plugin-2.04-lp152.7.22.7.noarch" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "product": { "name": "grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "product_id": "grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "product": { "name": "grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "product_id": "grub2-x86_64-efi-2.04-lp152.7.22.7.noarch" } }, { "category": "product_version", "name": "grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "product": { "name": "grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "product_id": "grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.04-lp152.7.22.7.noarch", "product": { "name": "grub2-x86_64-xen-2.04-lp152.7.22.7.noarch", "product_id": "grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-2.04-lp152.7.22.7.x86_64", "product": { "name": "grub2-2.04-lp152.7.22.7.x86_64", "product_id": "grub2-2.04-lp152.7.22.7.x86_64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "product": { "name": "grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "product_id": "grub2-branding-upstream-2.04-lp152.7.22.7.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "openSUSE Leap 15.2", "product": { "name": "openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2", "product_identification_helper": { "cpe": "cpe:/o:opensuse:leap:15.2" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-2.04-lp152.7.22.7.i586 as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586" }, "product_reference": "grub2-2.04-lp152.7.22.7.i586", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.04-lp152.7.22.7.x86_64 as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64" }, "product_reference": "grub2-2.04-lp152.7.22.7.x86_64", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-branding-upstream-2.04-lp152.7.22.7.i586 as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586" }, "product_reference": "grub2-branding-upstream-2.04-lp152.7.22.7.i586", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-branding-upstream-2.04-lp152.7.22.7.x86_64 as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64" }, "product_reference": "grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-efi-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch" }, "product_reference": "grub2-i386-efi-2.04-lp152.7.22.7.noarch", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch" }, "product_reference": "grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch" }, "product_reference": "grub2-i386-pc-2.04-lp152.7.22.7.noarch", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch" }, "product_reference": "grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-xen-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch" }, "product_reference": "grub2-i386-xen-2.04-lp152.7.22.7.noarch", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch" }, "product_reference": "grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch" }, "product_reference": "grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch" }, "product_reference": "grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "relates_to_product_reference": "openSUSE Leap 15.2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.04-lp152.7.22.7.noarch as component of openSUSE Leap 15.2", "product_id": "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" }, "product_reference": "grub2-x86_64-xen-2.04-lp152.7.22.7.noarch", "relates_to_product_reference": "openSUSE Leap 15.2" } ] }, "vulnerabilities": [ { "cve": "CVE-2020-14372", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-14372" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-14372", "url": "https://www.suse.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "SUSE Bug 1175970 for CVE-2020-14372", "url": "https://bugzilla.suse.com/1175970" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-22T11:05:35Z", "details": "important" } ], "title": "CVE-2020-14372" }, { "cve": "CVE-2020-25632", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25632" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25632", "url": "https://www.suse.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "SUSE Bug 1176711 for CVE-2020-25632", "url": "https://bugzilla.suse.com/1176711" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-22T11:05:35Z", "details": "important" } ], "title": "CVE-2020-25632" }, { "cve": "CVE-2020-25647", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25647" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25647", "url": "https://www.suse.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "SUSE Bug 1177883 for CVE-2020-25647", "url": "https://bugzilla.suse.com/1177883" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-22T11:05:35Z", "details": "important" } ], "title": "CVE-2020-25647" }, { "cve": "CVE-2020-27749", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27749" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27749", "url": "https://www.suse.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "SUSE Bug 1179264 for CVE-2020-27749", "url": "https://bugzilla.suse.com/1179264" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-22T11:05:35Z", "details": "important" } ], "title": "CVE-2020-27749" }, { "cve": "CVE-2020-27779", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27779" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27779", "url": "https://www.suse.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "SUSE Bug 1179265 for CVE-2020-27779", "url": "https://bugzilla.suse.com/1179265" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-22T11:05:35Z", "details": "important" } ], "title": "CVE-2020-27779" }, { "cve": "CVE-2021-20225", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20225" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20225", "url": "https://www.suse.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "SUSE Bug 1182262 for CVE-2021-20225", "url": "https://bugzilla.suse.com/1182262" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-22T11:05:35Z", "details": "important" } ], "title": "CVE-2021-20225" }, { "cve": "CVE-2021-20233", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20233" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20233", "url": "https://www.suse.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "SUSE Bug 1182263 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1182263" }, { "category": "external", "summary": "SUSE Bug 1183135 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1183135" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.i586", "openSUSE Leap 15.2:grub2-branding-upstream-2.04-lp152.7.22.7.x86_64", "openSUSE Leap 15.2:grub2-i386-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-pc-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-i386-xen-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-snapper-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-systemd-sleep-plugin-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-efi-debug-2.04-lp152.7.22.7.noarch", "openSUSE Leap 15.2:grub2-x86_64-xen-2.04-lp152.7.22.7.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-22T11:05:35Z", "details": "important" } ], "title": "CVE-2021-20233" } ] }
opensuse-su-2024:10824-1
Vulnerability from csaf_opensuse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "grub2-2.06-7.1 on GA media", "title": "Title of the patch" }, { "category": "description", "text": "These are all security issues fixed in the grub2-2.06-7.1 package on the GA media of openSUSE Tumbleweed.", "title": "Description of the patch" }, { "category": "details", "text": "openSUSE-Tumbleweed-2024-10824", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10824-1.json" }, { "category": "self", "summary": "SUSE CVE CVE-2020-10713 page", "url": "https://www.suse.com/security/cve/CVE-2020-10713/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-14308 page", "url": "https://www.suse.com/security/cve/CVE-2020-14308/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-15705 page", "url": "https://www.suse.com/security/cve/CVE-2020-15705/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-15706 page", "url": "https://www.suse.com/security/cve/CVE-2020-15706/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-15707 page", "url": "https://www.suse.com/security/cve/CVE-2020-15707/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25632 page", "url": "https://www.suse.com/security/cve/CVE-2020-25632/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25647 page", "url": "https://www.suse.com/security/cve/CVE-2020-25647/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27749 page", "url": "https://www.suse.com/security/cve/CVE-2020-27749/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27779 page", "url": "https://www.suse.com/security/cve/CVE-2020-27779/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20225 page", "url": "https://www.suse.com/security/cve/CVE-2021-20225/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20233 page", "url": "https://www.suse.com/security/cve/CVE-2021-20233/" } ], "title": "grub2-2.06-7.1 on GA media", "tracking": { "current_release_date": "2024-06-15T00:00:00Z", "generator": { "date": "2024-06-15T00:00:00Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "openSUSE-SU-2024:10824-1", "initial_release_date": "2024-06-15T00:00:00Z", "revision_history": [ { "date": "2024-06-15T00:00:00Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "grub2-2.06-7.1.aarch64", "product": { "name": "grub2-2.06-7.1.aarch64", "product_id": "grub2-2.06-7.1.aarch64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.06-7.1.aarch64", "product": { "name": "grub2-branding-upstream-2.06-7.1.aarch64", "product_id": "grub2-branding-upstream-2.06-7.1.aarch64" } }, { "category": "product_version", "name": "grub2-i386-pc-2.06-7.1.aarch64", "product": { "name": "grub2-i386-pc-2.06-7.1.aarch64", "product_id": "grub2-i386-pc-2.06-7.1.aarch64" } }, { "category": "product_version", "name": "grub2-i386-pc-debug-2.06-7.1.aarch64", "product": { "name": "grub2-i386-pc-debug-2.06-7.1.aarch64", "product_id": "grub2-i386-pc-debug-2.06-7.1.aarch64" } }, { "category": "product_version", "name": "grub2-snapper-plugin-2.06-7.1.aarch64", "product": { "name": "grub2-snapper-plugin-2.06-7.1.aarch64", "product_id": "grub2-snapper-plugin-2.06-7.1.aarch64" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "product": { "name": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "product_id": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.06-7.1.aarch64", "product": { "name": "grub2-x86_64-efi-2.06-7.1.aarch64", "product_id": "grub2-x86_64-efi-2.06-7.1.aarch64" } }, { "category": "product_version", "name": "grub2-x86_64-efi-debug-2.06-7.1.aarch64", "product": { "name": "grub2-x86_64-efi-debug-2.06-7.1.aarch64", "product_id": "grub2-x86_64-efi-debug-2.06-7.1.aarch64" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.06-7.1.aarch64", "product": { "name": "grub2-x86_64-xen-2.06-7.1.aarch64", "product_id": "grub2-x86_64-xen-2.06-7.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-2.06-7.1.ppc64le", "product": { "name": "grub2-2.06-7.1.ppc64le", "product_id": "grub2-2.06-7.1.ppc64le" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.06-7.1.ppc64le", "product": { "name": "grub2-branding-upstream-2.06-7.1.ppc64le", "product_id": "grub2-branding-upstream-2.06-7.1.ppc64le" } }, { "category": "product_version", "name": "grub2-i386-pc-2.06-7.1.ppc64le", "product": { "name": "grub2-i386-pc-2.06-7.1.ppc64le", "product_id": "grub2-i386-pc-2.06-7.1.ppc64le" } }, { "category": "product_version", "name": "grub2-i386-pc-debug-2.06-7.1.ppc64le", "product": { "name": "grub2-i386-pc-debug-2.06-7.1.ppc64le", "product_id": "grub2-i386-pc-debug-2.06-7.1.ppc64le" } }, { "category": "product_version", "name": "grub2-snapper-plugin-2.06-7.1.ppc64le", "product": { "name": "grub2-snapper-plugin-2.06-7.1.ppc64le", "product_id": "grub2-snapper-plugin-2.06-7.1.ppc64le" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "product": { "name": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "product_id": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.06-7.1.ppc64le", "product": { "name": "grub2-x86_64-efi-2.06-7.1.ppc64le", "product_id": "grub2-x86_64-efi-2.06-7.1.ppc64le" } }, { "category": "product_version", "name": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "product": { "name": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "product_id": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.06-7.1.ppc64le", "product": { "name": "grub2-x86_64-xen-2.06-7.1.ppc64le", "product_id": "grub2-x86_64-xen-2.06-7.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-2.06-7.1.s390x", "product": { "name": "grub2-2.06-7.1.s390x", "product_id": "grub2-2.06-7.1.s390x" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.06-7.1.s390x", "product": { "name": "grub2-branding-upstream-2.06-7.1.s390x", "product_id": "grub2-branding-upstream-2.06-7.1.s390x" } }, { "category": "product_version", "name": "grub2-i386-pc-2.06-7.1.s390x", "product": { "name": "grub2-i386-pc-2.06-7.1.s390x", "product_id": "grub2-i386-pc-2.06-7.1.s390x" } }, { "category": "product_version", "name": "grub2-i386-pc-debug-2.06-7.1.s390x", "product": { "name": "grub2-i386-pc-debug-2.06-7.1.s390x", "product_id": "grub2-i386-pc-debug-2.06-7.1.s390x" } }, { "category": "product_version", "name": "grub2-snapper-plugin-2.06-7.1.s390x", "product": { "name": "grub2-snapper-plugin-2.06-7.1.s390x", "product_id": "grub2-snapper-plugin-2.06-7.1.s390x" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.06-7.1.s390x", "product": { "name": "grub2-systemd-sleep-plugin-2.06-7.1.s390x", "product_id": "grub2-systemd-sleep-plugin-2.06-7.1.s390x" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.06-7.1.s390x", "product": { "name": "grub2-x86_64-efi-2.06-7.1.s390x", "product_id": "grub2-x86_64-efi-2.06-7.1.s390x" } }, { "category": "product_version", "name": "grub2-x86_64-efi-debug-2.06-7.1.s390x", "product": { "name": "grub2-x86_64-efi-debug-2.06-7.1.s390x", "product_id": "grub2-x86_64-efi-debug-2.06-7.1.s390x" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.06-7.1.s390x", "product": { "name": "grub2-x86_64-xen-2.06-7.1.s390x", "product_id": "grub2-x86_64-xen-2.06-7.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "grub2-2.06-7.1.x86_64", "product": { "name": "grub2-2.06-7.1.x86_64", "product_id": "grub2-2.06-7.1.x86_64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.06-7.1.x86_64", "product": { "name": "grub2-branding-upstream-2.06-7.1.x86_64", "product_id": "grub2-branding-upstream-2.06-7.1.x86_64" } }, { "category": "product_version", "name": "grub2-i386-pc-2.06-7.1.x86_64", "product": { "name": "grub2-i386-pc-2.06-7.1.x86_64", "product_id": "grub2-i386-pc-2.06-7.1.x86_64" } }, { "category": "product_version", "name": "grub2-i386-pc-debug-2.06-7.1.x86_64", "product": { "name": "grub2-i386-pc-debug-2.06-7.1.x86_64", "product_id": "grub2-i386-pc-debug-2.06-7.1.x86_64" } }, { "category": "product_version", "name": "grub2-snapper-plugin-2.06-7.1.x86_64", "product": { "name": "grub2-snapper-plugin-2.06-7.1.x86_64", "product_id": "grub2-snapper-plugin-2.06-7.1.x86_64" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "product": { "name": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "product_id": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.06-7.1.x86_64", "product": { "name": "grub2-x86_64-efi-2.06-7.1.x86_64", "product_id": "grub2-x86_64-efi-2.06-7.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-efi-debug-2.06-7.1.x86_64", "product": { "name": "grub2-x86_64-efi-debug-2.06-7.1.x86_64", "product_id": "grub2-x86_64-efi-debug-2.06-7.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.06-7.1.x86_64", "product": { "name": "grub2-x86_64-xen-2.06-7.1.x86_64", "product_id": "grub2-x86_64-xen-2.06-7.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "openSUSE Tumbleweed", "product": { "name": "openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed", "product_identification_helper": { "cpe": "cpe:/o:opensuse:tumbleweed" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-2.06-7.1.aarch64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64" }, "product_reference": "grub2-2.06-7.1.aarch64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.06-7.1.ppc64le as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le" }, "product_reference": "grub2-2.06-7.1.ppc64le", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.06-7.1.s390x as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.s390x" }, "product_reference": "grub2-2.06-7.1.s390x", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.06-7.1.x86_64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64" }, "product_reference": "grub2-2.06-7.1.x86_64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-branding-upstream-2.06-7.1.aarch64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64" }, "product_reference": "grub2-branding-upstream-2.06-7.1.aarch64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-branding-upstream-2.06-7.1.ppc64le as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le" }, "product_reference": "grub2-branding-upstream-2.06-7.1.ppc64le", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-branding-upstream-2.06-7.1.s390x as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x" }, "product_reference": "grub2-branding-upstream-2.06-7.1.s390x", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-branding-upstream-2.06-7.1.x86_64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64" }, "product_reference": "grub2-branding-upstream-2.06-7.1.x86_64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.06-7.1.aarch64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64" }, "product_reference": "grub2-i386-pc-2.06-7.1.aarch64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.06-7.1.ppc64le as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le" }, "product_reference": "grub2-i386-pc-2.06-7.1.ppc64le", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.06-7.1.s390x as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x" }, "product_reference": "grub2-i386-pc-2.06-7.1.s390x", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.06-7.1.x86_64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64" }, "product_reference": "grub2-i386-pc-2.06-7.1.x86_64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-debug-2.06-7.1.aarch64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64" }, "product_reference": "grub2-i386-pc-debug-2.06-7.1.aarch64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-debug-2.06-7.1.ppc64le as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le" }, "product_reference": "grub2-i386-pc-debug-2.06-7.1.ppc64le", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-debug-2.06-7.1.s390x as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x" }, "product_reference": "grub2-i386-pc-debug-2.06-7.1.s390x", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-debug-2.06-7.1.x86_64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64" }, "product_reference": "grub2-i386-pc-debug-2.06-7.1.x86_64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.06-7.1.aarch64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64" }, "product_reference": "grub2-snapper-plugin-2.06-7.1.aarch64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.06-7.1.ppc64le as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le" }, "product_reference": "grub2-snapper-plugin-2.06-7.1.ppc64le", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.06-7.1.s390x as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x" }, "product_reference": "grub2-snapper-plugin-2.06-7.1.s390x", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.06-7.1.x86_64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64" }, "product_reference": "grub2-snapper-plugin-2.06-7.1.x86_64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64" }, "product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le" }, "product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.06-7.1.s390x as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x" }, "product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.s390x", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64" }, "product_reference": "grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.06-7.1.aarch64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64" }, "product_reference": "grub2-x86_64-efi-2.06-7.1.aarch64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.06-7.1.ppc64le as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le" }, "product_reference": "grub2-x86_64-efi-2.06-7.1.ppc64le", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.06-7.1.s390x as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x" }, "product_reference": "grub2-x86_64-efi-2.06-7.1.s390x", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.06-7.1.x86_64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.06-7.1.x86_64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-debug-2.06-7.1.aarch64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64" }, "product_reference": "grub2-x86_64-efi-debug-2.06-7.1.aarch64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le" }, "product_reference": "grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-debug-2.06-7.1.s390x as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x" }, "product_reference": "grub2-x86_64-efi-debug-2.06-7.1.s390x", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-debug-2.06-7.1.x86_64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64" }, "product_reference": "grub2-x86_64-efi-debug-2.06-7.1.x86_64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.06-7.1.aarch64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64" }, "product_reference": "grub2-x86_64-xen-2.06-7.1.aarch64", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.06-7.1.ppc64le as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le" }, "product_reference": "grub2-x86_64-xen-2.06-7.1.ppc64le", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.06-7.1.s390x as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x" }, "product_reference": "grub2-x86_64-xen-2.06-7.1.s390x", "relates_to_product_reference": "openSUSE Tumbleweed" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.06-7.1.x86_64 as component of openSUSE Tumbleweed", "product_id": "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.06-7.1.x86_64", "relates_to_product_reference": "openSUSE Tumbleweed" } ] }, "vulnerabilities": [ { "cve": "CVE-2020-10713", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-10713" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-10713", "url": "https://www.suse.com/security/cve/CVE-2020-10713" }, { "category": "external", "summary": "SUSE Bug 1168994 for CVE-2020-10713", "url": "https://bugzilla.suse.com/1168994" }, { "category": "external", "summary": "SUSE Bug 1173456 for CVE-2020-10713", "url": "https://bugzilla.suse.com/1173456" }, { "category": "external", "summary": "SUSE Bug 1173812 for CVE-2020-10713", "url": "https://bugzilla.suse.com/1173812" }, { "category": "external", "summary": "SUSE Bug 1199353 for CVE-2020-10713", "url": "https://bugzilla.suse.com/1199353" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "important" } ], "title": "CVE-2020-10713" }, { "cve": "CVE-2020-14308", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-14308" } ], "notes": [ { "category": "general", "text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-14308", "url": "https://www.suse.com/security/cve/CVE-2020-14308" }, { "category": "external", "summary": "SUSE Bug 1168994 for CVE-2020-14308", "url": "https://bugzilla.suse.com/1168994" }, { "category": "external", "summary": "SUSE Bug 1173812 for CVE-2020-14308", "url": "https://bugzilla.suse.com/1173812" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "moderate" } ], "title": "CVE-2020-14308" }, { "cve": "CVE-2020-15705", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-15705" } ], "notes": [ { "category": "general", "text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-15705", "url": "https://www.suse.com/security/cve/CVE-2020-15705" }, { "category": "external", "summary": "SUSE Bug 1174421 for CVE-2020-15705", "url": "https://bugzilla.suse.com/1174421" }, { "category": "external", "summary": "SUSE Bug 1182890 for CVE-2020-15705", "url": "https://bugzilla.suse.com/1182890" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "important" } ], "title": "CVE-2020-15705" }, { "cve": "CVE-2020-15706", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-15706" } ], "notes": [ { "category": "general", "text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-15706", "url": "https://www.suse.com/security/cve/CVE-2020-15706" }, { "category": "external", "summary": "SUSE Bug 1174463 for CVE-2020-15706", "url": "https://bugzilla.suse.com/1174463" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "moderate" } ], "title": "CVE-2020-15706" }, { "cve": "CVE-2020-15707", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-15707" } ], "notes": [ { "category": "general", "text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-15707", "url": "https://www.suse.com/security/cve/CVE-2020-15707" }, { "category": "external", "summary": "SUSE Bug 1174570 for CVE-2020-15707", "url": "https://bugzilla.suse.com/1174570" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "important" } ], "title": "CVE-2020-15707" }, { "cve": "CVE-2020-25632", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25632" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25632", "url": "https://www.suse.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "SUSE Bug 1176711 for CVE-2020-25632", "url": "https://bugzilla.suse.com/1176711" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "important" } ], "title": "CVE-2020-25632" }, { "cve": "CVE-2020-25647", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25647" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25647", "url": "https://www.suse.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "SUSE Bug 1177883 for CVE-2020-25647", "url": "https://bugzilla.suse.com/1177883" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "important" } ], "title": "CVE-2020-25647" }, { "cve": "CVE-2020-27749", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27749" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27749", "url": "https://www.suse.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "SUSE Bug 1179264 for CVE-2020-27749", "url": "https://bugzilla.suse.com/1179264" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "important" } ], "title": "CVE-2020-27749" }, { "cve": "CVE-2020-27779", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27779" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27779", "url": "https://www.suse.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "SUSE Bug 1179265 for CVE-2020-27779", "url": "https://bugzilla.suse.com/1179265" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "important" } ], "title": "CVE-2020-27779" }, { "cve": "CVE-2021-20225", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20225" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20225", "url": "https://www.suse.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "SUSE Bug 1182262 for CVE-2021-20225", "url": "https://bugzilla.suse.com/1182262" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "important" } ], "title": "CVE-2021-20225" }, { "cve": "CVE-2021-20233", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20233" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20233", "url": "https://www.suse.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "SUSE Bug 1182263 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1182263" }, { "category": "external", "summary": "SUSE Bug 1183135 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1183135" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "openSUSE Tumbleweed:grub2-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-branding-upstream-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-i386-pc-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-snapper-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-systemd-sleep-plugin-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-efi-debug-2.06-7.1.x86_64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.aarch64", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.ppc64le", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.s390x", "openSUSE Tumbleweed:grub2-x86_64-xen-2.06-7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2024-06-15T00:00:00Z", "details": "important" } ], "title": "CVE-2021-20233" } ] }
fkie_cve-2021-20225
Vulnerability from fkie_nvd
{ "configurations": [ { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*", "matchCriteriaId": "01F8D62F-70BB-4718-A095-D68540C17EEA", "versionEndExcluding": "2.06", "vulnerable": true } ], "negate": false, "operator": "OR" } ] }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*", "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*", "matchCriteriaId": "1C8D871B-AEA1-4407-AEE3-47EC782250FF", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*", "matchCriteriaId": "98381E61-F082-4302-B51F-5648884F998B", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*", "matchCriteriaId": "D99A687E-EAE6-417E-A88E-D0082BC194CD", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*", "matchCriteriaId": "B353CE99-D57C-465B-AAB0-73EF581127D1", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*", "matchCriteriaId": "7431ABC1-9252-419E-8CC1-311B41360078", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*", "matchCriteriaId": "6897676D-53F9-45B3-B27F-7FF9A4C58D33", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*", "matchCriteriaId": "BF77CDCF-B9C9-427D-B2BF-36650FB2148C", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*", "matchCriteriaId": "21690BAC-2129-4A33-9B48-1F3BF30072A9", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:8.1:*:*:*:*:*:*:*", "matchCriteriaId": "F2FF6D89-9361-45B9-ABCC-1A5E600BD63C", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*", "matchCriteriaId": "D5F7E11E-FB34-4467-8919-2B6BEAABF665", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*", "matchCriteriaId": "B76AA310-FEC7-497F-AF04-C3EC1E76C4CC", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*", "matchCriteriaId": "17F256A9-D3B9-4C72-B013-4EFD878BFEA8", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*", "matchCriteriaId": "B09ACF2D-D83F-4A86-8185-9569605D8EE1", "vulnerable": true }, { "criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "825ECE2D-E232-46E0-A047-074B34DB1E97", "vulnerable": true } ], "negate": false, "operator": "OR" } ] }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*", "matchCriteriaId": "E460AA51-FCDA-46B9-AE97-E6676AA5E194", "vulnerable": true }, { "criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*", "matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835", "vulnerable": true } ], "negate": false, "operator": "OR" } ] }, { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*", "matchCriteriaId": "E7CF3019-975D-40BB-A8A4-894E62BD3797", "vulnerable": true } ], "negate": false, "operator": "OR" } ] } ], "cveTags": [], "descriptions": [ { "lang": "en", "value": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability." }, { "lang": "es", "value": "Se encontr\u00f3 un fallo en grub2 en versiones anteriores a 2.06.\u0026#xa0;El analizador de opciones permite a un atacante escribir m\u00e1s all\u00e1 del final de un b\u00fafer asignado a la pila al llamar a determinados comandos con una gran cantidad de formularios de opciones cortos espec\u00edficos.\u0026#xa0;La mayor amenaza de esta vulnerabilidad es la confidencialidad e integridad de los datos, as\u00ed como la disponibilidad del sistema" } ], "id": "CVE-2021-20225", "lastModified": "2024-11-21T05:46:09.903", "metrics": { "cvssMetricV2": [ { "acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false } ], "cvssMetricV31": [ { "cvssData": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "exploitabilityScore": 0.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary" } ] }, "published": "2021-03-03T17:15:11.973", "references": [ { "source": "secalert@redhat.com", "tags": [ "Issue Tracking", "Third Party Advisory" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "source": "secalert@redhat.com", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/" }, { "source": "secalert@redhat.com", "tags": [ "Third Party Advisory" ], "url": "https://security.gentoo.org/glsa/202104-05" }, { "source": "secalert@redhat.com", "tags": [ "Third Party Advisory" ], "url": "https://security.netapp.com/advisory/ntap-20220325-0001/" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Issue Tracking", "Third Party Advisory" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Third Party Advisory" ], "url": "https://security.gentoo.org/glsa/202104-05" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Third Party Advisory" ], "url": "https://security.netapp.com/advisory/ntap-20220325-0001/" } ], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [ { "description": [ { "lang": "en", "value": "CWE-787" } ], "source": "secalert@redhat.com", "type": "Secondary" }, { "description": [ { "lang": "en", "value": "CWE-787" } ], "source": "nvd@nist.gov", "type": "Primary" } ] }
suse-su-2021:0682-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for grub2", "title": "Title of the patch" }, { "category": "description", "text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n", "title": "Description of the patch" }, { "category": "details", "text": "HPE-Helion-OpenStack-8-2021-682,SUSE-2021-682,SUSE-OpenStack-Cloud-8-2021-682,SUSE-OpenStack-Cloud-Crowbar-8-2021-682,SUSE-SLE-SAP-12-SP3-2021-682,SUSE-SLE-SERVER-12-SP3-2021-682,SUSE-SLE-SERVER-12-SP3-BCL-2021-682", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0682-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2021:0682-1", "url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210682-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2021:0682-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008424.html" }, { "category": "self", "summary": "SUSE Bug 1175970", "url": "https://bugzilla.suse.com/1175970" }, { "category": "self", "summary": "SUSE Bug 1176711", "url": "https://bugzilla.suse.com/1176711" }, { "category": "self", "summary": "SUSE Bug 1177883", "url": "https://bugzilla.suse.com/1177883" }, { "category": "self", "summary": "SUSE Bug 1179264", "url": "https://bugzilla.suse.com/1179264" }, { "category": "self", "summary": "SUSE Bug 1179265", "url": "https://bugzilla.suse.com/1179265" }, { "category": "self", "summary": "SUSE Bug 1182057", "url": "https://bugzilla.suse.com/1182057" }, { "category": "self", "summary": "SUSE Bug 1182262", "url": "https://bugzilla.suse.com/1182262" }, { "category": "self", "summary": "SUSE Bug 1182263", "url": "https://bugzilla.suse.com/1182263" }, { "category": "self", "summary": "SUSE CVE CVE-2020-14372 page", "url": "https://www.suse.com/security/cve/CVE-2020-14372/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25632 page", "url": "https://www.suse.com/security/cve/CVE-2020-25632/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25647 page", "url": "https://www.suse.com/security/cve/CVE-2020-25647/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27749 page", "url": "https://www.suse.com/security/cve/CVE-2020-27749/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27779 page", "url": "https://www.suse.com/security/cve/CVE-2020-27779/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20225 page", "url": "https://www.suse.com/security/cve/CVE-2021-20225/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20233 page", "url": "https://www.suse.com/security/cve/CVE-2021-20233/" } ], "title": "Security update for grub2", "tracking": { "current_release_date": "2021-03-02T18:04:20Z", "generator": { "date": "2021-03-02T18:04:20Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2021:0682-1", "initial_release_date": "2021-03-02T18:04:20Z", "revision_history": [ { "date": "2021-03-02T18:04:20Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "grub2-2.02-4.69.1.aarch64", "product": { "name": "grub2-2.02-4.69.1.aarch64", "product_id": "grub2-2.02-4.69.1.aarch64" } }, { "category": "product_version", "name": "grub2-arm64-efi-2.02-4.69.1.aarch64", "product": { "name": "grub2-arm64-efi-2.02-4.69.1.aarch64", "product_id": "grub2-arm64-efi-2.02-4.69.1.aarch64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-4.69.1.aarch64", "product": { "name": "grub2-branding-upstream-2.02-4.69.1.aarch64", "product_id": "grub2-branding-upstream-2.02-4.69.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-4.69.1.i586", "product": { "name": "grub2-2.02-4.69.1.i586", "product_id": "grub2-2.02-4.69.1.i586" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-4.69.1.i586", "product": { "name": "grub2-branding-upstream-2.02-4.69.1.i586", "product_id": "grub2-branding-upstream-2.02-4.69.1.i586" } }, { "category": "product_version", "name": "grub2-i386-efi-2.02-4.69.1.i586", "product": { "name": "grub2-i386-efi-2.02-4.69.1.i586", "product_id": "grub2-i386-efi-2.02-4.69.1.i586" } }, { "category": "product_version", "name": "grub2-i386-pc-2.02-4.69.1.i586", "product": { "name": "grub2-i386-pc-2.02-4.69.1.i586", "product_id": "grub2-i386-pc-2.02-4.69.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "grub2-snapper-plugin-2.02-4.69.1.noarch", "product": { "name": "grub2-snapper-plugin-2.02-4.69.1.noarch", "product_id": "grub2-snapper-plugin-2.02-4.69.1.noarch" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "product": { "name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "product_id": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-4.69.1.ppc64le", "product": { "name": "grub2-2.02-4.69.1.ppc64le", "product_id": "grub2-2.02-4.69.1.ppc64le" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-4.69.1.ppc64le", "product": { "name": "grub2-branding-upstream-2.02-4.69.1.ppc64le", "product_id": "grub2-branding-upstream-2.02-4.69.1.ppc64le" } }, { "category": "product_version", "name": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "product": { "name": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "product_id": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-4.69.1.s390x", "product": { "name": "grub2-2.02-4.69.1.s390x", "product_id": "grub2-2.02-4.69.1.s390x" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-4.69.1.s390x", "product": { "name": "grub2-branding-upstream-2.02-4.69.1.s390x", "product_id": "grub2-branding-upstream-2.02-4.69.1.s390x" } }, { "category": "product_version", "name": "grub2-s390x-emu-2.02-4.69.1.s390x", "product": { "name": "grub2-s390x-emu-2.02-4.69.1.s390x", "product_id": "grub2-s390x-emu-2.02-4.69.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-4.69.1.x86_64", "product": { "name": "grub2-2.02-4.69.1.x86_64", "product_id": "grub2-2.02-4.69.1.x86_64" } }, { "category": "product_version", "name": "grub2-i386-pc-2.02-4.69.1.x86_64", "product": { "name": "grub2-i386-pc-2.02-4.69.1.x86_64", "product_id": "grub2-i386-pc-2.02-4.69.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.02-4.69.1.x86_64", "product": { "name": "grub2-x86_64-efi-2.02-4.69.1.x86_64", "product_id": "grub2-x86_64-efi-2.02-4.69.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.02-4.69.1.x86_64", "product": { "name": "grub2-x86_64-xen-2.02-4.69.1.x86_64", "product_id": "grub2-x86_64-xen-2.02-4.69.1.x86_64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-4.69.1.x86_64", "product": { "name": "grub2-branding-upstream-2.02-4.69.1.x86_64", "product_id": "grub2-branding-upstream-2.02-4.69.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "HPE Helion OpenStack 8", "product": { "name": "HPE Helion OpenStack 8", "product_id": "HPE Helion OpenStack 8", "product_identification_helper": { "cpe": "cpe:/o:suse:hpe-helion-openstack:8" } } }, { "category": "product_name", "name": "SUSE OpenStack Cloud 8", "product": { "name": "SUSE OpenStack Cloud 8", "product_id": "SUSE OpenStack Cloud 8", "product_identification_helper": { "cpe": "cpe:/o:suse:suse-openstack-cloud:8" } } }, { "category": "product_name", "name": "SUSE OpenStack Cloud Crowbar 8", "product": { "name": "SUSE OpenStack Cloud Crowbar 8", "product_id": "SUSE OpenStack Cloud Crowbar 8", "product_identification_helper": { "cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:8" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:12:sp3" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP3-LTSS", "product": { "name": "SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-ltss:12:sp3" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP3-BCL", "product": { "name": "SUSE Linux Enterprise Server 12 SP3-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-bcl:12:sp3" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-4.69.1.x86_64 as component of HPE Helion OpenStack 8", "product_id": "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64" }, "product_reference": "grub2-2.02-4.69.1.x86_64", "relates_to_product_reference": "HPE Helion OpenStack 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of HPE Helion OpenStack 8", "product_id": "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64", "relates_to_product_reference": "HPE Helion OpenStack 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of HPE Helion OpenStack 8", "product_id": "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "HPE Helion OpenStack 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of HPE Helion OpenStack 8", "product_id": "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "HPE Helion OpenStack 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of HPE Helion OpenStack 8", "product_id": "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64", "relates_to_product_reference": "HPE Helion OpenStack 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of HPE Helion OpenStack 8", "product_id": "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64", "relates_to_product_reference": "HPE Helion OpenStack 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud 8", "product_id": "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64" }, "product_reference": "grub2-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud 8", "product_id": "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of SUSE OpenStack Cloud 8", "product_id": "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of SUSE OpenStack Cloud 8", "product_id": "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud 8", "product_id": "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud 8", "product_id": "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", "product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64" }, "product_reference": "grub2-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", "product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of SUSE OpenStack Cloud Crowbar 8", "product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of SUSE OpenStack Cloud Crowbar 8", "product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", "product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", "product_id": "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-4.69.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le" }, "product_reference": "grub2-2.02-4.69.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64" }, "product_reference": "grub2-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le" }, "product_reference": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-4.69.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64" }, "product_reference": "grub2-2.02-4.69.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-4.69.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le" }, "product_reference": "grub2-2.02-4.69.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-4.69.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x" }, "product_reference": "grub2-2.02-4.69.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64" }, "product_reference": "grub2-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-4.69.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64" }, "product_reference": "grub2-arm64-efi-2.02-4.69.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le" }, "product_reference": "grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-s390x-emu-2.02-4.69.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x" }, "product_reference": "grub2-s390x-emu-2.02-4.69.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64" }, "product_reference": "grub2-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-4.69.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-4.69.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL" } ] }, "vulnerabilities": [ { "cve": "CVE-2020-14372", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-14372" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-14372", "url": "https://www.suse.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "SUSE Bug 1175970 for CVE-2020-14372", "url": "https://bugzilla.suse.com/1175970" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:20Z", "details": "important" } ], "title": "CVE-2020-14372" }, { "cve": "CVE-2020-25632", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25632" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25632", "url": "https://www.suse.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "SUSE Bug 1176711 for CVE-2020-25632", "url": "https://bugzilla.suse.com/1176711" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:20Z", "details": "important" } ], "title": "CVE-2020-25632" }, { "cve": "CVE-2020-25647", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25647" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25647", "url": "https://www.suse.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "SUSE Bug 1177883 for CVE-2020-25647", "url": "https://bugzilla.suse.com/1177883" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:20Z", "details": "important" } ], "title": "CVE-2020-25647" }, { "cve": "CVE-2020-27749", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27749" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27749", "url": "https://www.suse.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "SUSE Bug 1179264 for CVE-2020-27749", "url": "https://bugzilla.suse.com/1179264" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:20Z", "details": "important" } ], "title": "CVE-2020-27749" }, { "cve": "CVE-2020-27779", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27779" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27779", "url": "https://www.suse.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "SUSE Bug 1179265 for CVE-2020-27779", "url": "https://bugzilla.suse.com/1179265" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:20Z", "details": "important" } ], "title": "CVE-2020-27779" }, { "cve": "CVE-2021-20225", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20225" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20225", "url": "https://www.suse.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "SUSE Bug 1182262 for CVE-2021-20225", "url": "https://bugzilla.suse.com/1182262" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:20Z", "details": "important" } ], "title": "CVE-2021-20225" }, { "cve": "CVE-2021-20233", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20233" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20233", "url": "https://www.suse.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "SUSE Bug 1182263 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1182263" }, { "category": "external", "summary": "SUSE Bug 1183135 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1183135" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "HPE Helion OpenStack 8:grub2-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-i386-pc-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "HPE Helion OpenStack 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "HPE Helion OpenStack 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-arm64-efi-2.02-4.69.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-s390x-emu-2.02-4.69.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-powerpc-ieee1275-2.02-4.69.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud 8:grub2-x86_64-xen-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-i386-pc-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-snapper-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-systemd-sleep-plugin-2.02-4.69.1.noarch", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-efi-2.02-4.69.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:grub2-x86_64-xen-2.02-4.69.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:20Z", "details": "important" } ], "title": "CVE-2021-20233" } ] }
suse-su-2021:0681-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for grub2", "title": "Title of the patch" }, { "category": "description", "text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-2021-681,SUSE-OpenStack-Cloud-9-2021-681,SUSE-OpenStack-Cloud-Crowbar-9-2021-681,SUSE-SLE-SAP-12-SP4-2021-681,SUSE-SLE-SERVER-12-SP4-LTSS-2021-681,SUSE-SLE-SERVER-12-SP5-2021-681", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0681-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2021:0681-1", "url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210681-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2021:0681-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008422.html" }, { "category": "self", "summary": "SUSE Bug 1175970", "url": "https://bugzilla.suse.com/1175970" }, { "category": "self", "summary": "SUSE Bug 1176711", "url": "https://bugzilla.suse.com/1176711" }, { "category": "self", "summary": "SUSE Bug 1177883", "url": "https://bugzilla.suse.com/1177883" }, { "category": "self", "summary": "SUSE Bug 1179264", "url": "https://bugzilla.suse.com/1179264" }, { "category": "self", "summary": "SUSE Bug 1179265", "url": "https://bugzilla.suse.com/1179265" }, { "category": "self", "summary": "SUSE Bug 1182057", "url": "https://bugzilla.suse.com/1182057" }, { "category": "self", "summary": "SUSE Bug 1182262", "url": "https://bugzilla.suse.com/1182262" }, { "category": "self", "summary": "SUSE Bug 1182263", "url": "https://bugzilla.suse.com/1182263" }, { "category": "self", "summary": "SUSE CVE CVE-2020-14372 page", "url": "https://www.suse.com/security/cve/CVE-2020-14372/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25632 page", "url": "https://www.suse.com/security/cve/CVE-2020-25632/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25647 page", "url": "https://www.suse.com/security/cve/CVE-2020-25647/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27749 page", "url": "https://www.suse.com/security/cve/CVE-2020-27749/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27779 page", "url": "https://www.suse.com/security/cve/CVE-2020-27779/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20225 page", "url": "https://www.suse.com/security/cve/CVE-2021-20225/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20233 page", "url": "https://www.suse.com/security/cve/CVE-2021-20233/" } ], "title": "Security update for grub2", "tracking": { "current_release_date": "2021-03-02T18:03:48Z", "generator": { "date": "2021-03-02T18:03:48Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2021:0681-1", "initial_release_date": "2021-03-02T18:03:48Z", "revision_history": [ { "date": "2021-03-02T18:03:48Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "grub2-2.02-12.47.1.aarch64", "product": { "name": "grub2-2.02-12.47.1.aarch64", "product_id": "grub2-2.02-12.47.1.aarch64" } }, { "category": "product_version", "name": "grub2-arm64-efi-2.02-12.47.1.aarch64", "product": { "name": "grub2-arm64-efi-2.02-12.47.1.aarch64", "product_id": "grub2-arm64-efi-2.02-12.47.1.aarch64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-12.47.1.aarch64", "product": { "name": "grub2-branding-upstream-2.02-12.47.1.aarch64", "product_id": "grub2-branding-upstream-2.02-12.47.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-12.47.1.i586", "product": { "name": "grub2-2.02-12.47.1.i586", "product_id": "grub2-2.02-12.47.1.i586" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-12.47.1.i586", "product": { "name": "grub2-branding-upstream-2.02-12.47.1.i586", "product_id": "grub2-branding-upstream-2.02-12.47.1.i586" } }, { "category": "product_version", "name": "grub2-i386-efi-2.02-12.47.1.i586", "product": { "name": "grub2-i386-efi-2.02-12.47.1.i586", "product_id": "grub2-i386-efi-2.02-12.47.1.i586" } }, { "category": "product_version", "name": "grub2-i386-pc-2.02-12.47.1.i586", "product": { "name": "grub2-i386-pc-2.02-12.47.1.i586", "product_id": "grub2-i386-pc-2.02-12.47.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "grub2-snapper-plugin-2.02-12.47.1.noarch", "product": { "name": "grub2-snapper-plugin-2.02-12.47.1.noarch", "product_id": "grub2-snapper-plugin-2.02-12.47.1.noarch" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "product": { "name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "product_id": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.02-12.47.1.noarch", "product": { "name": "grub2-x86_64-xen-2.02-12.47.1.noarch", "product_id": "grub2-x86_64-xen-2.02-12.47.1.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-12.47.1.ppc64le", "product": { "name": "grub2-2.02-12.47.1.ppc64le", "product_id": "grub2-2.02-12.47.1.ppc64le" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-12.47.1.ppc64le", "product": { "name": "grub2-branding-upstream-2.02-12.47.1.ppc64le", "product_id": "grub2-branding-upstream-2.02-12.47.1.ppc64le" } }, { "category": "product_version", "name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "product": { "name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "product_id": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-12.47.1.s390x", "product": { "name": "grub2-2.02-12.47.1.s390x", "product_id": "grub2-2.02-12.47.1.s390x" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-12.47.1.s390x", "product": { "name": "grub2-branding-upstream-2.02-12.47.1.s390x", "product_id": "grub2-branding-upstream-2.02-12.47.1.s390x" } }, { "category": "product_version", "name": "grub2-s390x-emu-2.02-12.47.1.s390x", "product": { "name": "grub2-s390x-emu-2.02-12.47.1.s390x", "product_id": "grub2-s390x-emu-2.02-12.47.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-12.47.1.x86_64", "product": { "name": "grub2-2.02-12.47.1.x86_64", "product_id": "grub2-2.02-12.47.1.x86_64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-12.47.1.x86_64", "product": { "name": "grub2-branding-upstream-2.02-12.47.1.x86_64", "product_id": "grub2-branding-upstream-2.02-12.47.1.x86_64" } }, { "category": "product_version", "name": "grub2-i386-pc-2.02-12.47.1.x86_64", "product": { "name": "grub2-i386-pc-2.02-12.47.1.x86_64", "product_id": "grub2-i386-pc-2.02-12.47.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.02-12.47.1.x86_64", "product": { "name": "grub2-x86_64-efi-2.02-12.47.1.x86_64", "product_id": "grub2-x86_64-efi-2.02-12.47.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE OpenStack Cloud 9", "product": { "name": "SUSE OpenStack Cloud 9", "product_id": "SUSE OpenStack Cloud 9", "product_identification_helper": { "cpe": "cpe:/o:suse:suse-openstack-cloud:9" } } }, { "category": "product_name", "name": "SUSE OpenStack Cloud Crowbar 9", "product": { "name": "SUSE OpenStack Cloud Crowbar 9", "product_id": "SUSE OpenStack Cloud Crowbar 9", "product_identification_helper": { "cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:12:sp4" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP4-LTSS", "product": { "name": "SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP5", "product": { "name": "SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5", "product_identification_helper": { "cpe": "cpe:/o:suse:sles:12:sp5" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:12:sp5" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud 9", "product_id": "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64" }, "product_reference": "grub2-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud 9", "product_id": "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud 9", "product_id": "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud 9", "product_id": "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud 9", "product_id": "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud 9", "product_id": "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", "product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64" }, "product_reference": "grub2-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", "product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", "product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", "product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", "product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", "product_id": "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le" }, "product_reference": "grub2-2.02-12.47.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64" }, "product_reference": "grub2-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le" }, "product_reference": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64" }, "product_reference": "grub2-2.02-12.47.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le" }, "product_reference": "grub2-2.02-12.47.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x" }, "product_reference": "grub2-2.02-12.47.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64" }, "product_reference": "grub2-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64" }, "product_reference": "grub2-arm64-efi-2.02-12.47.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le" }, "product_reference": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-s390x-emu-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x" }, "product_reference": "grub2-s390x-emu-2.02-12.47.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64" }, "product_reference": "grub2-2.02-12.47.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le" }, "product_reference": "grub2-2.02-12.47.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x" }, "product_reference": "grub2-2.02-12.47.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64" }, "product_reference": "grub2-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64" }, "product_reference": "grub2-arm64-efi-2.02-12.47.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le" }, "product_reference": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-s390x-emu-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x" }, "product_reference": "grub2-s390x-emu-2.02-12.47.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server 12 SP5", "product_id": "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64" }, "product_reference": "grub2-2.02-12.47.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le" }, "product_reference": "grub2-2.02-12.47.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x" }, "product_reference": "grub2-2.02-12.47.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64" }, "product_reference": "grub2-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-12.47.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64" }, "product_reference": "grub2-arm64-efi-2.02-12.47.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le" }, "product_reference": "grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-s390x-emu-2.02-12.47.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x" }, "product_reference": "grub2-s390x-emu-2.02-12.47.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-12.47.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-12.47.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-12.47.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-12.47.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5" } ] }, "vulnerabilities": [ { "cve": "CVE-2020-14372", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-14372" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-14372", "url": "https://www.suse.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "SUSE Bug 1175970 for CVE-2020-14372", "url": "https://bugzilla.suse.com/1175970" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:48Z", "details": "important" } ], "title": "CVE-2020-14372" }, { "cve": "CVE-2020-25632", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25632" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25632", "url": "https://www.suse.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "SUSE Bug 1176711 for CVE-2020-25632", "url": "https://bugzilla.suse.com/1176711" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:48Z", "details": "important" } ], "title": "CVE-2020-25632" }, { "cve": "CVE-2020-25647", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25647" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25647", "url": "https://www.suse.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "SUSE Bug 1177883 for CVE-2020-25647", "url": "https://bugzilla.suse.com/1177883" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:48Z", "details": "important" } ], "title": "CVE-2020-25647" }, { "cve": "CVE-2020-27749", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27749" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27749", "url": "https://www.suse.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "SUSE Bug 1179264 for CVE-2020-27749", "url": "https://bugzilla.suse.com/1179264" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:48Z", "details": "important" } ], "title": "CVE-2020-27749" }, { "cve": "CVE-2020-27779", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27779" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27779", "url": "https://www.suse.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "SUSE Bug 1179265 for CVE-2020-27779", "url": "https://bugzilla.suse.com/1179265" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:48Z", "details": "important" } ], "title": "CVE-2020-27779" }, { "cve": "CVE-2021-20225", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20225" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20225", "url": "https://www.suse.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "SUSE Bug 1182262 for CVE-2021-20225", "url": "https://bugzilla.suse.com/1182262" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:48Z", "details": "important" } ], "title": "CVE-2021-20225" }, { "cve": "CVE-2021-20233", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20233" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20233", "url": "https://www.suse.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "SUSE Bug 1182263 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1182263" }, { "category": "external", "summary": "SUSE Bug 1183135 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1183135" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-arm64-efi-2.02-12.47.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-powerpc-ieee1275-2.02-12.47.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-s390x-emu-2.02-12.47.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud 9:grub2-x86_64-xen-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-i386-pc-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-snapper-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-systemd-sleep-plugin-2.02-12.47.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-efi-2.02-12.47.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:grub2-x86_64-xen-2.02-12.47.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:48Z", "details": "important" } ], "title": "CVE-2021-20233" } ] }
suse-su-2021:0679-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for grub2", "title": "Title of the patch" }, { "category": "description", "text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\ngrub2 was bumped to version 2.02, same as SUSE Linux Enterprise 12 SP3.\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-2021-679,SUSE-OpenStack-Cloud-7-2021-679,SUSE-SLE-SAP-12-SP2-2021-679,SUSE-SLE-SERVER-12-SP2-2021-679,SUSE-SLE-SERVER-12-SP2-BCL-2021-679", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0679-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2021:0679-1", "url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210679-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2021:0679-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008425.html" }, { "category": "self", "summary": "SUSE Bug 1175970", "url": "https://bugzilla.suse.com/1175970" }, { "category": "self", "summary": "SUSE Bug 1176711", "url": "https://bugzilla.suse.com/1176711" }, { "category": "self", "summary": "SUSE Bug 1177883", "url": "https://bugzilla.suse.com/1177883" }, { "category": "self", "summary": "SUSE Bug 1179264", "url": "https://bugzilla.suse.com/1179264" }, { "category": "self", "summary": "SUSE Bug 1179265", "url": "https://bugzilla.suse.com/1179265" }, { "category": "self", "summary": "SUSE Bug 1182057", "url": "https://bugzilla.suse.com/1182057" }, { "category": "self", "summary": "SUSE Bug 1182262", "url": "https://bugzilla.suse.com/1182262" }, { "category": "self", "summary": "SUSE Bug 1182263", "url": "https://bugzilla.suse.com/1182263" }, { "category": "self", "summary": "SUSE CVE CVE-2020-14372 page", "url": "https://www.suse.com/security/cve/CVE-2020-14372/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25632 page", "url": "https://www.suse.com/security/cve/CVE-2020-25632/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25647 page", "url": "https://www.suse.com/security/cve/CVE-2020-25647/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27749 page", "url": "https://www.suse.com/security/cve/CVE-2020-27749/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27779 page", "url": "https://www.suse.com/security/cve/CVE-2020-27779/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20225 page", "url": "https://www.suse.com/security/cve/CVE-2021-20225/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20233 page", "url": "https://www.suse.com/security/cve/CVE-2021-20233/" } ], "title": "Security update for grub2", "tracking": { "current_release_date": "2021-03-02T18:02:55Z", "generator": { "date": "2021-03-02T18:02:55Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2021:0679-1", "initial_release_date": "2021-03-02T18:02:55Z", "revision_history": [ { "date": "2021-03-02T18:02:55Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "grub2-2.02-115.59.1.aarch64", "product": { "name": "grub2-2.02-115.59.1.aarch64", "product_id": "grub2-2.02-115.59.1.aarch64" } }, { "category": "product_version", "name": "grub2-arm64-efi-2.02-115.59.1.aarch64", "product": { "name": "grub2-arm64-efi-2.02-115.59.1.aarch64", "product_id": "grub2-arm64-efi-2.02-115.59.1.aarch64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-115.59.1.aarch64", "product": { "name": "grub2-branding-upstream-2.02-115.59.1.aarch64", "product_id": "grub2-branding-upstream-2.02-115.59.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-115.59.1.i586", "product": { "name": "grub2-2.02-115.59.1.i586", "product_id": "grub2-2.02-115.59.1.i586" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-115.59.1.i586", "product": { "name": "grub2-branding-upstream-2.02-115.59.1.i586", "product_id": "grub2-branding-upstream-2.02-115.59.1.i586" } }, { "category": "product_version", "name": "grub2-i386-efi-2.02-115.59.1.i586", "product": { "name": "grub2-i386-efi-2.02-115.59.1.i586", "product_id": "grub2-i386-efi-2.02-115.59.1.i586" } }, { "category": "product_version", "name": "grub2-i386-pc-2.02-115.59.1.i586", "product": { "name": "grub2-i386-pc-2.02-115.59.1.i586", "product_id": "grub2-i386-pc-2.02-115.59.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "grub2-snapper-plugin-2.02-115.59.1.noarch", "product": { "name": "grub2-snapper-plugin-2.02-115.59.1.noarch", "product_id": "grub2-snapper-plugin-2.02-115.59.1.noarch" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "product": { "name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "product_id": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-115.59.1.ppc64le", "product": { "name": "grub2-2.02-115.59.1.ppc64le", "product_id": "grub2-2.02-115.59.1.ppc64le" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-115.59.1.ppc64le", "product": { "name": "grub2-branding-upstream-2.02-115.59.1.ppc64le", "product_id": "grub2-branding-upstream-2.02-115.59.1.ppc64le" } }, { "category": "product_version", "name": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "product": { "name": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "product_id": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-115.59.1.s390x", "product": { "name": "grub2-2.02-115.59.1.s390x", "product_id": "grub2-2.02-115.59.1.s390x" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-115.59.1.s390x", "product": { "name": "grub2-branding-upstream-2.02-115.59.1.s390x", "product_id": "grub2-branding-upstream-2.02-115.59.1.s390x" } }, { "category": "product_version", "name": "grub2-s390x-emu-2.02-115.59.1.s390x", "product": { "name": "grub2-s390x-emu-2.02-115.59.1.s390x", "product_id": "grub2-s390x-emu-2.02-115.59.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-115.59.1.x86_64", "product": { "name": "grub2-2.02-115.59.1.x86_64", "product_id": "grub2-2.02-115.59.1.x86_64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-115.59.1.x86_64", "product": { "name": "grub2-branding-upstream-2.02-115.59.1.x86_64", "product_id": "grub2-branding-upstream-2.02-115.59.1.x86_64" } }, { "category": "product_version", "name": "grub2-i386-pc-2.02-115.59.1.x86_64", "product": { "name": "grub2-i386-pc-2.02-115.59.1.x86_64", "product_id": "grub2-i386-pc-2.02-115.59.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.02-115.59.1.x86_64", "product": { "name": "grub2-x86_64-efi-2.02-115.59.1.x86_64", "product_id": "grub2-x86_64-efi-2.02-115.59.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.02-115.59.1.x86_64", "product": { "name": "grub2-x86_64-xen-2.02-115.59.1.x86_64", "product_id": "grub2-x86_64-xen-2.02-115.59.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE OpenStack Cloud 7", "product": { "name": "SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7", "product_identification_helper": { "cpe": "cpe:/o:suse:suse-openstack-cloud:7" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:12:sp2" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP2-LTSS", "product": { "name": "SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-ltss:12:sp2" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP2-BCL", "product": { "name": "SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-bcl:12:sp2" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-115.59.1.s390x as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x" }, "product_reference": "grub2-2.02-115.59.1.s390x", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-115.59.1.x86_64 as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64" }, "product_reference": "grub2-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-115.59.1.x86_64 as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-s390x-emu-2.02-115.59.1.s390x as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x" }, "product_reference": "grub2-s390x-emu-2.02-115.59.1.s390x", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-115.59.1.noarch as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-115.59.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-115.59.1.x86_64 as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-115.59.1.x86_64 as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-115.59.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le" }, "product_reference": "grub2-2.02-115.59.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64" }, "product_reference": "grub2-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le" }, "product_reference": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-115.59.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-115.59.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le" }, "product_reference": "grub2-2.02-115.59.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-115.59.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x" }, "product_reference": "grub2-2.02-115.59.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64" }, "product_reference": "grub2-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le" }, "product_reference": "grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-s390x-emu-2.02-115.59.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x" }, "product_reference": "grub2-s390x-emu-2.02-115.59.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-115.59.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64" }, "product_reference": "grub2-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-115.59.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-115.59.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-115.59.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL" } ] }, "vulnerabilities": [ { "cve": "CVE-2020-14372", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-14372" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-14372", "url": "https://www.suse.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "SUSE Bug 1175970 for CVE-2020-14372", "url": "https://bugzilla.suse.com/1175970" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:02:55Z", "details": "important" } ], "title": "CVE-2020-14372" }, { "cve": "CVE-2020-25632", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25632" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25632", "url": "https://www.suse.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "SUSE Bug 1176711 for CVE-2020-25632", "url": "https://bugzilla.suse.com/1176711" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:02:55Z", "details": "important" } ], "title": "CVE-2020-25632" }, { "cve": "CVE-2020-25647", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25647" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25647", "url": "https://www.suse.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "SUSE Bug 1177883 for CVE-2020-25647", "url": "https://bugzilla.suse.com/1177883" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:02:55Z", "details": "important" } ], "title": "CVE-2020-25647" }, { "cve": "CVE-2020-27749", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27749" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27749", "url": "https://www.suse.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "SUSE Bug 1179264 for CVE-2020-27749", "url": "https://bugzilla.suse.com/1179264" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:02:55Z", "details": "important" } ], "title": "CVE-2020-27749" }, { "cve": "CVE-2020-27779", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27779" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27779", "url": "https://www.suse.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "SUSE Bug 1179265 for CVE-2020-27779", "url": "https://bugzilla.suse.com/1179265" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:02:55Z", "details": "important" } ], "title": "CVE-2020-27779" }, { "cve": "CVE-2021-20225", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20225" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20225", "url": "https://www.suse.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "SUSE Bug 1182262 for CVE-2021-20225", "url": "https://bugzilla.suse.com/1182262" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:02:55Z", "details": "important" } ], "title": "CVE-2021-20225" }, { "cve": "CVE-2021-20233", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20233" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20233", "url": "https://www.suse.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "SUSE Bug 1182263 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1182263" }, { "category": "external", "summary": "SUSE Bug 1183135 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1183135" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-powerpc-ieee1275-2.02-115.59.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:grub2-x86_64-xen-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-i386-pc-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-s390x-emu-2.02-115.59.1.s390x", "SUSE OpenStack Cloud 7:grub2-snapper-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-systemd-sleep-plugin-2.02-115.59.1.noarch", "SUSE OpenStack Cloud 7:grub2-x86_64-efi-2.02-115.59.1.x86_64", "SUSE OpenStack Cloud 7:grub2-x86_64-xen-2.02-115.59.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:02:55Z", "details": "important" } ], "title": "CVE-2021-20233" } ] }
suse-su-2021:14659-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for grub2", "title": "Title of the patch" }, { "category": "description", "text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\ngrub2 was updated to the 2.02 version (same as SUSE Linux Enterprise 12 SP3).\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n", "title": "Description of the patch" }, { "category": "details", "text": "slessp4-grub2-14659", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_14659-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2021:14659-1", "url": "https://www.suse.com/support/update/announcement/2021/suse-su-202114659-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2021:14659-1", "url": "https://lists.suse.com/pipermail/sle-updates/2021-March/018162.html" }, { "category": "self", "summary": "SUSE Bug 1175970", "url": "https://bugzilla.suse.com/1175970" }, { "category": "self", "summary": "SUSE Bug 1176711", "url": "https://bugzilla.suse.com/1176711" }, { "category": "self", "summary": "SUSE Bug 1177883", "url": "https://bugzilla.suse.com/1177883" }, { "category": "self", "summary": "SUSE Bug 1179264", "url": "https://bugzilla.suse.com/1179264" }, { "category": "self", "summary": "SUSE Bug 1179265", "url": "https://bugzilla.suse.com/1179265" }, { "category": "self", "summary": "SUSE Bug 1182057", "url": "https://bugzilla.suse.com/1182057" }, { "category": "self", "summary": "SUSE Bug 1182262", "url": "https://bugzilla.suse.com/1182262" }, { "category": "self", "summary": "SUSE Bug 1182263", "url": "https://bugzilla.suse.com/1182263" }, { "category": "self", "summary": "SUSE CVE CVE-2017-9763 page", "url": "https://www.suse.com/security/cve/CVE-2017-9763/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-14372 page", "url": "https://www.suse.com/security/cve/CVE-2020-14372/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25632 page", "url": "https://www.suse.com/security/cve/CVE-2020-25632/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25647 page", "url": "https://www.suse.com/security/cve/CVE-2020-25647/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27749 page", "url": "https://www.suse.com/security/cve/CVE-2020-27749/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27779 page", "url": "https://www.suse.com/security/cve/CVE-2020-27779/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20225 page", "url": "https://www.suse.com/security/cve/CVE-2021-20225/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20233 page", "url": "https://www.suse.com/security/cve/CVE-2021-20233/" } ], "title": "Security update for grub2", "tracking": { "current_release_date": "2021-03-02T18:03:21Z", "generator": { "date": "2021-03-02T18:03:21Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2021:14659-1", "initial_release_date": "2021-03-02T18:03:21Z", "revision_history": [ { "date": "2021-03-02T18:03:21Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "product": { "name": "grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "product_id": "grub2-x86_64-efi-2.02-0.66.26.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.02-0.66.26.1.x86_64", "product": { "name": "grub2-x86_64-xen-2.02-0.66.26.1.x86_64", "product_id": "grub2-x86_64-xen-2.02-0.66.26.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise Server 11 SP4-LTSS", "product": { "name": "SUSE Linux Enterprise Server 11 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:suse_sles:11:sp4" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-0.66.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-0.66.26.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS", "product_id": "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-0.66.26.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-LTSS" } ] }, "vulnerabilities": [ { "cve": "CVE-2017-9763", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-9763" } ], "notes": [ { "category": "general", "text": "The grub_ext2_read_block function in fs/ext2.c in GNU GRUB before 2013-11-12, as used in shlr/grub/fs/ext2.c in radare2 1.5.0, allows remote attackers to cause a denial of service (excessive stack use and application crash) via a crafted binary file, related to use of a variable-size stack array.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-9763", "url": "https://www.suse.com/security/cve/CVE-2017-9763" }, { "category": "external", "summary": "SUSE Bug 1045063 for CVE-2017-9763", "url": "https://bugzilla.suse.com/1045063" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 4.1, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:21Z", "details": "moderate" } ], "title": "CVE-2017-9763" }, { "cve": "CVE-2020-14372", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-14372" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-14372", "url": "https://www.suse.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "SUSE Bug 1175970 for CVE-2020-14372", "url": "https://bugzilla.suse.com/1175970" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:21Z", "details": "important" } ], "title": "CVE-2020-14372" }, { "cve": "CVE-2020-25632", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25632" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25632", "url": "https://www.suse.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "SUSE Bug 1176711 for CVE-2020-25632", "url": "https://bugzilla.suse.com/1176711" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:21Z", "details": "important" } ], "title": "CVE-2020-25632" }, { "cve": "CVE-2020-25647", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25647" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25647", "url": "https://www.suse.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "SUSE Bug 1177883 for CVE-2020-25647", "url": "https://bugzilla.suse.com/1177883" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:21Z", "details": "important" } ], "title": "CVE-2020-25647" }, { "cve": "CVE-2020-27749", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27749" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27749", "url": "https://www.suse.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "SUSE Bug 1179264 for CVE-2020-27749", "url": "https://bugzilla.suse.com/1179264" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:21Z", "details": "important" } ], "title": "CVE-2020-27749" }, { "cve": "CVE-2020-27779", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27779" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27779", "url": "https://www.suse.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "SUSE Bug 1179265 for CVE-2020-27779", "url": "https://bugzilla.suse.com/1179265" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:21Z", "details": "important" } ], "title": "CVE-2020-27779" }, { "cve": "CVE-2021-20225", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20225" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20225", "url": "https://www.suse.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "SUSE Bug 1182262 for CVE-2021-20225", "url": "https://bugzilla.suse.com/1182262" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:21Z", "details": "important" } ], "title": "CVE-2021-20225" }, { "cve": "CVE-2021-20233", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20233" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20233", "url": "https://www.suse.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "SUSE Bug 1182263 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1182263" }, { "category": "external", "summary": "SUSE Bug 1183135 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1183135" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-efi-2.02-0.66.26.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:grub2-x86_64-xen-2.02-0.66.26.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:03:21Z", "details": "important" } ], "title": "CVE-2021-20233" } ] }
suse-su-2021:0684-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for grub2", "title": "Title of the patch" }, { "category": "description", "text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-2021-684,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-684,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-684,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-684,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-684,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-684,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-684,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-684,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-684,SUSE-Storage-6-2021-684", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0684-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2021:0684-1", "url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210684-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2021:0684-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008427.html" }, { "category": "self", "summary": "SUSE Bug 1175970", "url": "https://bugzilla.suse.com/1175970" }, { "category": "self", "summary": "SUSE Bug 1176711", "url": "https://bugzilla.suse.com/1176711" }, { "category": "self", "summary": "SUSE Bug 1177883", "url": "https://bugzilla.suse.com/1177883" }, { "category": "self", "summary": "SUSE Bug 1179264", "url": "https://bugzilla.suse.com/1179264" }, { "category": "self", "summary": "SUSE Bug 1179265", "url": "https://bugzilla.suse.com/1179265" }, { "category": "self", "summary": "SUSE Bug 1182057", "url": "https://bugzilla.suse.com/1182057" }, { "category": "self", "summary": "SUSE Bug 1182262", "url": "https://bugzilla.suse.com/1182262" }, { "category": "self", "summary": "SUSE Bug 1182263", "url": "https://bugzilla.suse.com/1182263" }, { "category": "self", "summary": "SUSE CVE CVE-2020-14372 page", "url": "https://www.suse.com/security/cve/CVE-2020-14372/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25632 page", "url": "https://www.suse.com/security/cve/CVE-2020-25632/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25647 page", "url": "https://www.suse.com/security/cve/CVE-2020-25647/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27749 page", "url": "https://www.suse.com/security/cve/CVE-2020-27749/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27779 page", "url": "https://www.suse.com/security/cve/CVE-2020-27779/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20225 page", "url": "https://www.suse.com/security/cve/CVE-2021-20225/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20233 page", "url": "https://www.suse.com/security/cve/CVE-2021-20233/" } ], "title": "Security update for grub2", "tracking": { "current_release_date": "2021-03-02T18:05:46Z", "generator": { "date": "2021-03-02T18:05:46Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2021:0684-1", "initial_release_date": "2021-03-02T18:05:46Z", "revision_history": [ { "date": "2021-03-02T18:05:46Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "grub2-2.02-26.43.1.aarch64", "product": { "name": "grub2-2.02-26.43.1.aarch64", "product_id": "grub2-2.02-26.43.1.aarch64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-26.43.1.aarch64", "product": { "name": "grub2-branding-upstream-2.02-26.43.1.aarch64", "product_id": "grub2-branding-upstream-2.02-26.43.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-26.43.1.i586", "product": { "name": "grub2-2.02-26.43.1.i586", "product_id": "grub2-2.02-26.43.1.i586" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-26.43.1.i586", "product": { "name": "grub2-branding-upstream-2.02-26.43.1.i586", "product_id": "grub2-branding-upstream-2.02-26.43.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "grub2-arm64-efi-2.02-26.43.1.noarch", "product": { "name": "grub2-arm64-efi-2.02-26.43.1.noarch", "product_id": "grub2-arm64-efi-2.02-26.43.1.noarch" } }, { "category": "product_version", "name": "grub2-i386-efi-2.02-26.43.1.noarch", "product": { "name": "grub2-i386-efi-2.02-26.43.1.noarch", "product_id": "grub2-i386-efi-2.02-26.43.1.noarch" } }, { "category": "product_version", "name": "grub2-i386-pc-2.02-26.43.1.noarch", "product": { "name": "grub2-i386-pc-2.02-26.43.1.noarch", "product_id": "grub2-i386-pc-2.02-26.43.1.noarch" } }, { "category": "product_version", "name": "grub2-i386-xen-2.02-26.43.1.noarch", "product": { "name": "grub2-i386-xen-2.02-26.43.1.noarch", "product_id": "grub2-i386-xen-2.02-26.43.1.noarch" } }, { "category": "product_version", "name": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "product": { "name": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "product_id": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch" } }, { "category": "product_version", "name": "grub2-snapper-plugin-2.02-26.43.1.noarch", "product": { "name": "grub2-snapper-plugin-2.02-26.43.1.noarch", "product_id": "grub2-snapper-plugin-2.02-26.43.1.noarch" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "product": { "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "product_id": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.02-26.43.1.noarch", "product": { "name": "grub2-x86_64-efi-2.02-26.43.1.noarch", "product_id": "grub2-x86_64-efi-2.02-26.43.1.noarch" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.02-26.43.1.noarch", "product": { "name": "grub2-x86_64-xen-2.02-26.43.1.noarch", "product_id": "grub2-x86_64-xen-2.02-26.43.1.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-26.43.1.ppc64le", "product": { "name": "grub2-2.02-26.43.1.ppc64le", "product_id": "grub2-2.02-26.43.1.ppc64le" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-26.43.1.ppc64le", "product": { "name": "grub2-branding-upstream-2.02-26.43.1.ppc64le", "product_id": "grub2-branding-upstream-2.02-26.43.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-26.43.1.s390x", "product": { "name": "grub2-2.02-26.43.1.s390x", "product_id": "grub2-2.02-26.43.1.s390x" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-26.43.1.s390x", "product": { "name": "grub2-branding-upstream-2.02-26.43.1.s390x", "product_id": "grub2-branding-upstream-2.02-26.43.1.s390x" } }, { "category": "product_version", "name": "grub2-s390x-emu-2.02-26.43.1.s390x", "product": { "name": "grub2-s390x-emu-2.02-26.43.1.s390x", "product_id": "grub2-s390x-emu-2.02-26.43.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-26.43.1.x86_64", "product": { "name": "grub2-2.02-26.43.1.x86_64", "product_id": "grub2-2.02-26.43.1.x86_64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-26.43.1.x86_64", "product": { "name": "grub2-branding-upstream-2.02-26.43.1.x86_64", "product_id": "grub2-branding-upstream-2.02-26.43.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product": { "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product_identification_helper": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product": { "name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 15 SP1-BCL", "product": { "name": "SUSE Linux Enterprise Server 15 SP1-BCL", "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_bcl:15:sp1" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 15 SP1-LTSS", "product": { "name": "SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:15:sp1" } } }, { "category": "product_name", "name": "SUSE Manager Proxy 4.0", "product": { "name": "SUSE Manager Proxy 4.0", "product_id": "SUSE Manager Proxy 4.0", "product_identification_helper": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.0" } } }, { "category": "product_name", "name": "SUSE Manager Retail Branch Server 4.0", "product": { "name": "SUSE Manager Retail Branch Server 4.0", "product_id": "SUSE Manager Retail Branch Server 4.0", "product_identification_helper": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.0" } } }, { "category": "product_name", "name": "SUSE Manager Server 4.0", "product": { "name": "SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0", "product_identification_helper": { "cpe": "cpe:/o:suse:suse-manager-server:4.0" } } }, { "category": "product_name", "name": "SUSE Enterprise Storage 6", "product": { "name": "SUSE Enterprise Storage 6", "product_id": "SUSE Enterprise Storage 6", "product_identification_helper": { "cpe": "cpe:/o:suse:ses:6" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64" }, "product_reference": "grub2-2.02-26.43.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64" }, "product_reference": "grub2-2.02-26.43.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-arm64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch" }, "product_reference": "grub2-i386-pc-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64" }, "product_reference": "grub2-2.02-26.43.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64" }, "product_reference": "grub2-2.02-26.43.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-arm64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch" }, "product_reference": "grub2-i386-pc-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL", "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64" }, "product_reference": "grub2-2.02-26.43.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL", "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch" }, "product_reference": "grub2-i386-pc-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL", "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL", "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL", "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL", "product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64" }, "product_reference": "grub2-2.02-26.43.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le" }, "product_reference": "grub2-2.02-26.43.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x" }, "product_reference": "grub2-2.02-26.43.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64" }, "product_reference": "grub2-2.02-26.43.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-arm64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch" }, "product_reference": "grub2-i386-pc-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch" }, "product_reference": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-s390x-emu-2.02-26.43.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x" }, "product_reference": "grub2-s390x-emu-2.02-26.43.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le" }, "product_reference": "grub2-2.02-26.43.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64" }, "product_reference": "grub2-2.02-26.43.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch" }, "product_reference": "grub2-i386-pc-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch" }, "product_reference": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Manager Proxy 4.0", "product_id": "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64" }, "product_reference": "grub2-2.02-26.43.1.x86_64", "relates_to_product_reference": "SUSE Manager Proxy 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Manager Proxy 4.0", "product_id": "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch" }, "product_reference": "grub2-i386-pc-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Proxy 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Manager Proxy 4.0", "product_id": "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Proxy 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Manager Proxy 4.0", "product_id": "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Proxy 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Manager Proxy 4.0", "product_id": "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Proxy 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Manager Proxy 4.0", "product_id": "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Proxy 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0", "product_id": "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64" }, "product_reference": "grub2-2.02-26.43.1.x86_64", "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Manager Retail Branch Server 4.0", "product_id": "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch" }, "product_reference": "grub2-i386-pc-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Manager Retail Branch Server 4.0", "product_id": "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Manager Retail Branch Server 4.0", "product_id": "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Manager Retail Branch Server 4.0", "product_id": "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Manager Retail Branch Server 4.0", "product_id": "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.ppc64le as component of SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le" }, "product_reference": "grub2-2.02-26.43.1.ppc64le", "relates_to_product_reference": "SUSE Manager Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.s390x as component of SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x" }, "product_reference": "grub2-2.02-26.43.1.s390x", "relates_to_product_reference": "SUSE Manager Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64" }, "product_reference": "grub2-2.02-26.43.1.x86_64", "relates_to_product_reference": "SUSE Manager Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch" }, "product_reference": "grub2-i386-pc-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch" }, "product_reference": "grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-s390x-emu-2.02-26.43.1.s390x as component of SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x" }, "product_reference": "grub2-s390x-emu-2.02-26.43.1.s390x", "relates_to_product_reference": "SUSE Manager Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Manager Server 4.0", "product_id": "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Manager Server 4.0" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.aarch64 as component of SUSE Enterprise Storage 6", "product_id": "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64" }, "product_reference": "grub2-2.02-26.43.1.aarch64", "relates_to_product_reference": "SUSE Enterprise Storage 6" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-26.43.1.x86_64 as component of SUSE Enterprise Storage 6", "product_id": "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64" }, "product_reference": "grub2-2.02-26.43.1.x86_64", "relates_to_product_reference": "SUSE Enterprise Storage 6" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6", "product_id": "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-arm64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Enterprise Storage 6" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6", "product_id": "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch" }, "product_reference": "grub2-i386-pc-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Enterprise Storage 6" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6", "product_id": "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Enterprise Storage 6" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6", "product_id": "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Enterprise Storage 6" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6", "product_id": "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-efi-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Enterprise Storage 6" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-26.43.1.noarch as component of SUSE Enterprise Storage 6", "product_id": "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.02-26.43.1.noarch", "relates_to_product_reference": "SUSE Enterprise Storage 6" } ] }, "vulnerabilities": [ { "cve": "CVE-2020-14372", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-14372" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-14372", "url": "https://www.suse.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "SUSE Bug 1175970 for CVE-2020-14372", "url": "https://bugzilla.suse.com/1175970" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:05:46Z", "details": "important" } ], "title": "CVE-2020-14372" }, { "cve": "CVE-2020-25632", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25632" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25632", "url": "https://www.suse.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "SUSE Bug 1176711 for CVE-2020-25632", "url": "https://bugzilla.suse.com/1176711" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:05:46Z", "details": "important" } ], "title": "CVE-2020-25632" }, { "cve": "CVE-2020-25647", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25647" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25647", "url": "https://www.suse.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "SUSE Bug 1177883 for CVE-2020-25647", "url": "https://bugzilla.suse.com/1177883" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:05:46Z", "details": "important" } ], "title": "CVE-2020-25647" }, { "cve": "CVE-2020-27749", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27749" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27749", "url": "https://www.suse.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "SUSE Bug 1179264 for CVE-2020-27749", "url": "https://bugzilla.suse.com/1179264" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:05:46Z", "details": "important" } ], "title": "CVE-2020-27749" }, { "cve": "CVE-2020-27779", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27779" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27779", "url": "https://www.suse.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "SUSE Bug 1179265 for CVE-2020-27779", "url": "https://bugzilla.suse.com/1179265" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:05:46Z", "details": "important" } ], "title": "CVE-2020-27779" }, { "cve": "CVE-2021-20225", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20225" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20225", "url": "https://www.suse.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "SUSE Bug 1182262 for CVE-2021-20225", "url": "https://bugzilla.suse.com/1182262" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:05:46Z", "details": "important" } ], "title": "CVE-2021-20225" }, { "cve": "CVE-2021-20233", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20233" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20233", "url": "https://www.suse.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "SUSE Bug 1182263 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1182263" }, { "category": "external", "summary": "SUSE Bug 1183135 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1183135" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.aarch64", "SUSE Enterprise Storage 6:grub2-2.02-26.43.1.x86_64", "SUSE Enterprise Storage 6:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Enterprise Storage 6:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-BCL:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-arm64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server 15 SP1-LTSS:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-2.02-26.43.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Proxy 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Proxy 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Retail Branch Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Retail Branch Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.ppc64le", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-2.02-26.43.1.x86_64", "SUSE Manager Server 4.0:grub2-i386-pc-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-powerpc-ieee1275-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-s390x-emu-2.02-26.43.1.s390x", "SUSE Manager Server 4.0:grub2-snapper-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-systemd-sleep-plugin-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-efi-2.02-26.43.1.noarch", "SUSE Manager Server 4.0:grub2-x86_64-xen-2.02-26.43.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:05:46Z", "details": "important" } ], "title": "CVE-2021-20233" } ] }
suse-su-2021:0683-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for grub2", "title": "Title of the patch" }, { "category": "description", "text": "This update for grub2 fixes the following issues:\n\ngrub2 implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-2021-683,SUSE-SLE-Module-Basesystem-15-SP2-2021-683,SUSE-SLE-Module-Server-Applications-15-SP2-2021-683", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0683-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2021:0683-1", "url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210683-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2021:0683-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008423.html" }, { "category": "self", "summary": "SUSE Bug 1175970", "url": "https://bugzilla.suse.com/1175970" }, { "category": "self", "summary": "SUSE Bug 1176711", "url": "https://bugzilla.suse.com/1176711" }, { "category": "self", "summary": "SUSE Bug 1177883", "url": "https://bugzilla.suse.com/1177883" }, { "category": "self", "summary": "SUSE Bug 1179264", "url": "https://bugzilla.suse.com/1179264" }, { "category": "self", "summary": "SUSE Bug 1179265", "url": "https://bugzilla.suse.com/1179265" }, { "category": "self", "summary": "SUSE Bug 1182057", "url": "https://bugzilla.suse.com/1182057" }, { "category": "self", "summary": "SUSE Bug 1182262", "url": "https://bugzilla.suse.com/1182262" }, { "category": "self", "summary": "SUSE Bug 1182263", "url": "https://bugzilla.suse.com/1182263" }, { "category": "self", "summary": "SUSE CVE CVE-2020-14372 page", "url": "https://www.suse.com/security/cve/CVE-2020-14372/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25632 page", "url": "https://www.suse.com/security/cve/CVE-2020-25632/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25647 page", "url": "https://www.suse.com/security/cve/CVE-2020-25647/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27749 page", "url": "https://www.suse.com/security/cve/CVE-2020-27749/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27779 page", "url": "https://www.suse.com/security/cve/CVE-2020-27779/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20225 page", "url": "https://www.suse.com/security/cve/CVE-2021-20225/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20233 page", "url": "https://www.suse.com/security/cve/CVE-2021-20233/" } ], "title": "Security update for grub2", "tracking": { "current_release_date": "2021-03-02T18:04:52Z", "generator": { "date": "2021-03-02T18:04:52Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2021:0683-1", "initial_release_date": "2021-03-02T18:04:52Z", "revision_history": [ { "date": "2021-03-02T18:04:52Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "grub2-2.04-9.34.1.aarch64", "product": { "name": "grub2-2.04-9.34.1.aarch64", "product_id": "grub2-2.04-9.34.1.aarch64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.04-9.34.1.aarch64", "product": { "name": "grub2-branding-upstream-2.04-9.34.1.aarch64", "product_id": "grub2-branding-upstream-2.04-9.34.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-2.04-9.34.1.i586", "product": { "name": "grub2-2.04-9.34.1.i586", "product_id": "grub2-2.04-9.34.1.i586" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.04-9.34.1.i586", "product": { "name": "grub2-branding-upstream-2.04-9.34.1.i586", "product_id": "grub2-branding-upstream-2.04-9.34.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "grub2-arm64-efi-2.04-9.34.1.noarch", "product": { "name": "grub2-arm64-efi-2.04-9.34.1.noarch", "product_id": "grub2-arm64-efi-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-arm64-efi-debug-2.04-9.34.1.noarch", "product": { "name": "grub2-arm64-efi-debug-2.04-9.34.1.noarch", "product_id": "grub2-arm64-efi-debug-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-i386-efi-2.04-9.34.1.noarch", "product": { "name": "grub2-i386-efi-2.04-9.34.1.noarch", "product_id": "grub2-i386-efi-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-i386-efi-debug-2.04-9.34.1.noarch", "product": { "name": "grub2-i386-efi-debug-2.04-9.34.1.noarch", "product_id": "grub2-i386-efi-debug-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-i386-pc-2.04-9.34.1.noarch", "product": { "name": "grub2-i386-pc-2.04-9.34.1.noarch", "product_id": "grub2-i386-pc-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-i386-pc-debug-2.04-9.34.1.noarch", "product": { "name": "grub2-i386-pc-debug-2.04-9.34.1.noarch", "product_id": "grub2-i386-pc-debug-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-i386-xen-2.04-9.34.1.noarch", "product": { "name": "grub2-i386-xen-2.04-9.34.1.noarch", "product_id": "grub2-i386-xen-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "product": { "name": "grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "product_id": "grub2-powerpc-ieee1275-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-powerpc-ieee1275-debug-2.04-9.34.1.noarch", "product": { "name": "grub2-powerpc-ieee1275-debug-2.04-9.34.1.noarch", "product_id": "grub2-powerpc-ieee1275-debug-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-snapper-plugin-2.04-9.34.1.noarch", "product": { "name": "grub2-snapper-plugin-2.04-9.34.1.noarch", "product_id": "grub2-snapper-plugin-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "product": { "name": "grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "product_id": "grub2-systemd-sleep-plugin-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.04-9.34.1.noarch", "product": { "name": "grub2-x86_64-efi-2.04-9.34.1.noarch", "product_id": "grub2-x86_64-efi-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-x86_64-efi-debug-2.04-9.34.1.noarch", "product": { "name": "grub2-x86_64-efi-debug-2.04-9.34.1.noarch", "product_id": "grub2-x86_64-efi-debug-2.04-9.34.1.noarch" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.04-9.34.1.noarch", "product": { "name": "grub2-x86_64-xen-2.04-9.34.1.noarch", "product_id": "grub2-x86_64-xen-2.04-9.34.1.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-2.04-9.34.1.ppc64le", "product": { "name": "grub2-2.04-9.34.1.ppc64le", "product_id": "grub2-2.04-9.34.1.ppc64le" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.04-9.34.1.ppc64le", "product": { "name": "grub2-branding-upstream-2.04-9.34.1.ppc64le", "product_id": "grub2-branding-upstream-2.04-9.34.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-2.04-9.34.1.s390x", "product": { "name": "grub2-2.04-9.34.1.s390x", "product_id": "grub2-2.04-9.34.1.s390x" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.04-9.34.1.s390x", "product": { "name": "grub2-branding-upstream-2.04-9.34.1.s390x", "product_id": "grub2-branding-upstream-2.04-9.34.1.s390x" } }, { "category": "product_version", "name": "grub2-s390x-emu-2.04-9.34.1.s390x", "product": { "name": "grub2-s390x-emu-2.04-9.34.1.s390x", "product_id": "grub2-s390x-emu-2.04-9.34.1.s390x" } }, { "category": "product_version", "name": "grub2-s390x-emu-debug-2.04-9.34.1.s390x", "product": { "name": "grub2-s390x-emu-debug-2.04-9.34.1.s390x", "product_id": "grub2-s390x-emu-debug-2.04-9.34.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "grub2-2.04-9.34.1.x86_64", "product": { "name": "grub2-2.04-9.34.1.x86_64", "product_id": "grub2-2.04-9.34.1.x86_64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.04-9.34.1.x86_64", "product": { "name": "grub2-branding-upstream-2.04-9.34.1.x86_64", "product_id": "grub2-branding-upstream-2.04-9.34.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise Module for Basesystem 15 SP2", "product": { "name": "SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_identification_helper": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp2" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Module for Server Applications 15 SP2", "product": { "name": "SUSE Linux Enterprise Module for Server Applications 15 SP2", "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2", "product_identification_helper": { "cpe": "cpe:/o:suse:sle-module-server-applications:15:sp2" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-2.04-9.34.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64" }, "product_reference": "grub2-2.04-9.34.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.04-9.34.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le" }, "product_reference": "grub2-2.04-9.34.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.04-9.34.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x" }, "product_reference": "grub2-2.04-9.34.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.04-9.34.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64" }, "product_reference": "grub2-2.04-9.34.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch" }, "product_reference": "grub2-arm64-efi-2.04-9.34.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch" }, "product_reference": "grub2-i386-pc-2.04-9.34.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch" }, "product_reference": "grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-s390x-emu-2.04-9.34.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x" }, "product_reference": "grub2-s390x-emu-2.04-9.34.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.04-9.34.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP2", "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch" }, "product_reference": "grub2-x86_64-efi-2.04-9.34.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.04-9.34.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP2", "product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" }, "product_reference": "grub2-x86_64-xen-2.04-9.34.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP2" } ] }, "vulnerabilities": [ { "cve": "CVE-2020-14372", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-14372" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-14372", "url": "https://www.suse.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "SUSE Bug 1175970 for CVE-2020-14372", "url": "https://bugzilla.suse.com/1175970" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:52Z", "details": "important" } ], "title": "CVE-2020-14372" }, { "cve": "CVE-2020-25632", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25632" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25632", "url": "https://www.suse.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "SUSE Bug 1176711 for CVE-2020-25632", "url": "https://bugzilla.suse.com/1176711" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:52Z", "details": "important" } ], "title": "CVE-2020-25632" }, { "cve": "CVE-2020-25647", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25647" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25647", "url": "https://www.suse.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "SUSE Bug 1177883 for CVE-2020-25647", "url": "https://bugzilla.suse.com/1177883" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:52Z", "details": "important" } ], "title": "CVE-2020-25647" }, { "cve": "CVE-2020-27749", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27749" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27749", "url": "https://www.suse.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "SUSE Bug 1179264 for CVE-2020-27749", "url": "https://bugzilla.suse.com/1179264" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:52Z", "details": "important" } ], "title": "CVE-2020-27749" }, { "cve": "CVE-2020-27779", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27779" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27779", "url": "https://www.suse.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "SUSE Bug 1179265 for CVE-2020-27779", "url": "https://bugzilla.suse.com/1179265" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:52Z", "details": "important" } ], "title": "CVE-2020-27779" }, { "cve": "CVE-2021-20225", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20225" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20225", "url": "https://www.suse.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "SUSE Bug 1182262 for CVE-2021-20225", "url": "https://bugzilla.suse.com/1182262" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:52Z", "details": "important" } ], "title": "CVE-2021-20225" }, { "cve": "CVE-2021-20233", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20233" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20233", "url": "https://www.suse.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "SUSE Bug 1182263 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1182263" }, { "category": "external", "summary": "SUSE Bug 1183135 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1183135" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.aarch64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.ppc64le", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-2.04-9.34.1.x86_64", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-arm64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-i386-pc-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-powerpc-ieee1275-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-s390x-emu-2.04-9.34.1.s390x", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-snapper-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-systemd-sleep-plugin-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Basesystem 15 SP2:grub2-x86_64-efi-2.04-9.34.1.noarch", "SUSE Linux Enterprise Module for Server Applications 15 SP2:grub2-x86_64-xen-2.04-9.34.1.noarch" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:04:52Z", "details": "important" } ], "title": "CVE-2021-20233" } ] }
suse-su-2021:0685-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for grub2", "title": "Title of the patch" }, { "category": "description", "text": "This update for grub2 fixes the following issues:\n\ngrub2 now implements the new \u0027SBAT\u0027 method for SHIM based secure boot revocation. (bsc#1182057)\n\nFollowing security issues are fixed that can violate secure boot constraints:\n\n- CVE-2020-25632: Fixed a use-after-free in rmmod command (bsc#1176711)\n- CVE-2020-25647: Fixed an out-of-bound write in grub_usb_device_initialize() (bsc#1177883)\n- CVE-2020-27749: Fixed a stack buffer overflow in grub_parser_split_cmdline (bsc#1179264)\n- CVE-2020-27779, CVE-2020-14372: Disallow cutmem and acpi commands in secure boot mode (bsc#1179265 bsc#1175970)\n- CVE-2021-20225: Fixed a heap out-of-bounds write in short form option parser (bsc#1182262)\n- CVE-2021-20233: Fixed a heap out-of-bound write due to mis-calculation of space required for quoting (bsc#1182263)\n\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-2021-685,SUSE-SLE-Product-HPC-15-2021-685,SUSE-SLE-Product-SLES-15-2021-685,SUSE-SLE-Product-SLES_SAP-15-2021-685", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_0685-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2021:0685-1", "url": "https://www.suse.com/support/update/announcement/2021/suse-su-20210685-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2021:0685-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2021-March/008418.html" }, { "category": "self", "summary": "SUSE Bug 1175970", "url": "https://bugzilla.suse.com/1175970" }, { "category": "self", "summary": "SUSE Bug 1176711", "url": "https://bugzilla.suse.com/1176711" }, { "category": "self", "summary": "SUSE Bug 1177883", "url": "https://bugzilla.suse.com/1177883" }, { "category": "self", "summary": "SUSE Bug 1179264", "url": "https://bugzilla.suse.com/1179264" }, { "category": "self", "summary": "SUSE Bug 1179265", "url": "https://bugzilla.suse.com/1179265" }, { "category": "self", "summary": "SUSE Bug 1182057", "url": "https://bugzilla.suse.com/1182057" }, { "category": "self", "summary": "SUSE Bug 1182262", "url": "https://bugzilla.suse.com/1182262" }, { "category": "self", "summary": "SUSE Bug 1182263", "url": "https://bugzilla.suse.com/1182263" }, { "category": "self", "summary": "SUSE CVE CVE-2020-14372 page", "url": "https://www.suse.com/security/cve/CVE-2020-14372/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25632 page", "url": "https://www.suse.com/security/cve/CVE-2020-25632/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-25647 page", "url": "https://www.suse.com/security/cve/CVE-2020-25647/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27749 page", "url": "https://www.suse.com/security/cve/CVE-2020-27749/" }, { "category": "self", "summary": "SUSE CVE CVE-2020-27779 page", "url": "https://www.suse.com/security/cve/CVE-2020-27779/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20225 page", "url": "https://www.suse.com/security/cve/CVE-2021-20225/" }, { "category": "self", "summary": "SUSE CVE CVE-2021-20233 page", "url": "https://www.suse.com/security/cve/CVE-2021-20233/" } ], "title": "Security update for grub2", "tracking": { "current_release_date": "2021-03-02T18:06:17Z", "generator": { "date": "2021-03-02T18:06:17Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2021:0685-1", "initial_release_date": "2021-03-02T18:06:17Z", "revision_history": [ { "date": "2021-03-02T18:06:17Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "grub2-2.02-19.66.1.aarch64", "product": { "name": "grub2-2.02-19.66.1.aarch64", "product_id": "grub2-2.02-19.66.1.aarch64" } }, { "category": "product_version", "name": "grub2-arm64-efi-2.02-19.66.1.aarch64", "product": { "name": "grub2-arm64-efi-2.02-19.66.1.aarch64", "product_id": "grub2-arm64-efi-2.02-19.66.1.aarch64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-19.66.1.aarch64", "product": { "name": "grub2-branding-upstream-2.02-19.66.1.aarch64", "product_id": "grub2-branding-upstream-2.02-19.66.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-19.66.1.i586", "product": { "name": "grub2-2.02-19.66.1.i586", "product_id": "grub2-2.02-19.66.1.i586" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-19.66.1.i586", "product": { "name": "grub2-branding-upstream-2.02-19.66.1.i586", "product_id": "grub2-branding-upstream-2.02-19.66.1.i586" } }, { "category": "product_version", "name": "grub2-i386-efi-2.02-19.66.1.i586", "product": { "name": "grub2-i386-efi-2.02-19.66.1.i586", "product_id": "grub2-i386-efi-2.02-19.66.1.i586" } }, { "category": "product_version", "name": "grub2-i386-pc-2.02-19.66.1.i586", "product": { "name": "grub2-i386-pc-2.02-19.66.1.i586", "product_id": "grub2-i386-pc-2.02-19.66.1.i586" } }, { "category": "product_version", "name": "grub2-i386-xen-2.02-19.66.1.i586", "product": { "name": "grub2-i386-xen-2.02-19.66.1.i586", "product_id": "grub2-i386-xen-2.02-19.66.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "grub2-snapper-plugin-2.02-19.66.1.noarch", "product": { "name": "grub2-snapper-plugin-2.02-19.66.1.noarch", "product_id": "grub2-snapper-plugin-2.02-19.66.1.noarch" } }, { "category": "product_version", "name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "product": { "name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "product_id": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch" } } ], "category": "architecture", "name": "noarch" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-19.66.1.ppc64le", "product": { "name": "grub2-2.02-19.66.1.ppc64le", "product_id": "grub2-2.02-19.66.1.ppc64le" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-19.66.1.ppc64le", "product": { "name": "grub2-branding-upstream-2.02-19.66.1.ppc64le", "product_id": "grub2-branding-upstream-2.02-19.66.1.ppc64le" } }, { "category": "product_version", "name": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "product": { "name": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "product_id": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-19.66.1.s390x", "product": { "name": "grub2-2.02-19.66.1.s390x", "product_id": "grub2-2.02-19.66.1.s390x" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-19.66.1.s390x", "product": { "name": "grub2-branding-upstream-2.02-19.66.1.s390x", "product_id": "grub2-branding-upstream-2.02-19.66.1.s390x" } }, { "category": "product_version", "name": "grub2-s390x-emu-2.02-19.66.1.s390x", "product": { "name": "grub2-s390x-emu-2.02-19.66.1.s390x", "product_id": "grub2-s390x-emu-2.02-19.66.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "grub2-2.02-19.66.1.x86_64", "product": { "name": "grub2-2.02-19.66.1.x86_64", "product_id": "grub2-2.02-19.66.1.x86_64" } }, { "category": "product_version", "name": "grub2-branding-upstream-2.02-19.66.1.x86_64", "product": { "name": "grub2-branding-upstream-2.02-19.66.1.x86_64", "product_id": "grub2-branding-upstream-2.02-19.66.1.x86_64" } }, { "category": "product_version", "name": "grub2-i386-pc-2.02-19.66.1.x86_64", "product": { "name": "grub2-i386-pc-2.02-19.66.1.x86_64", "product_id": "grub2-i386-pc-2.02-19.66.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-efi-2.02-19.66.1.x86_64", "product": { "name": "grub2-x86_64-efi-2.02-19.66.1.x86_64", "product_id": "grub2-x86_64-efi-2.02-19.66.1.x86_64" } }, { "category": "product_version", "name": "grub2-x86_64-xen-2.02-19.66.1.x86_64", "product": { "name": "grub2-x86_64-xen-2.02-19.66.1.x86_64", "product_id": "grub2-x86_64-xen-2.02-19.66.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product": { "name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product_identification_helper": { "cpe": "cpe:/o:suse:sle_hpc-espos:15" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise High Performance Computing 15-LTSS", "product": { "name": "SUSE Linux Enterprise High Performance Computing 15-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 15-LTSS", "product": { "name": "SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-ltss:15" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 15", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 15", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:15" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64" }, "product_reference": "grub2-2.02-19.66.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64" }, "product_reference": "grub2-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64" }, "product_reference": "grub2-arm64-efi-2.02-19.66.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-19.66.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64" }, "product_reference": "grub2-2.02-19.66.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64" }, "product_reference": "grub2-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64" }, "product_reference": "grub2-arm64-efi-2.02-19.66.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-19.66.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", "product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64" }, "product_reference": "grub2-2.02-19.66.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-19.66.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le" }, "product_reference": "grub2-2.02-19.66.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-19.66.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x" }, "product_reference": "grub2-2.02-19.66.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64" }, "product_reference": "grub2-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-arm64-efi-2.02-19.66.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64" }, "product_reference": "grub2-arm64-efi-2.02-19.66.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le" }, "product_reference": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-s390x-emu-2.02-19.66.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x" }, "product_reference": "grub2-s390x-emu-2.02-19.66.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-19.66.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", "product_id": "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-19.66.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le" }, "product_reference": "grub2-2.02-19.66.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64" }, "product_reference": "grub2-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-i386-pc-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64" }, "product_reference": "grub2-i386-pc-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le" }, "product_reference": "grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-snapper-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch" }, "product_reference": "grub2-snapper-plugin-2.02-19.66.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch" }, "product_reference": "grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-efi-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64" }, "product_reference": "grub2-x86_64-efi-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15" }, { "category": "default_component_of", "full_product_name": { "name": "grub2-x86_64-xen-2.02-19.66.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", "product_id": "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" }, "product_reference": "grub2-x86_64-xen-2.02-19.66.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15" } ] }, "vulnerabilities": [ { "cve": "CVE-2020-14372", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-14372" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-14372", "url": "https://www.suse.com/security/cve/CVE-2020-14372" }, { "category": "external", "summary": "SUSE Bug 1175970 for CVE-2020-14372", "url": "https://bugzilla.suse.com/1175970" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:06:17Z", "details": "important" } ], "title": "CVE-2020-14372" }, { "cve": "CVE-2020-25632", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25632" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25632", "url": "https://www.suse.com/security/cve/CVE-2020-25632" }, { "category": "external", "summary": "SUSE Bug 1176711 for CVE-2020-25632", "url": "https://bugzilla.suse.com/1176711" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:06:17Z", "details": "important" } ], "title": "CVE-2020-25632" }, { "cve": "CVE-2020-25647", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-25647" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution allowing a bypass of the Secure Boot mechanism. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-25647", "url": "https://www.suse.com/security/cve/CVE-2020-25647" }, { "category": "external", "summary": "SUSE Bug 1177883 for CVE-2020-25647", "url": "https://bugzilla.suse.com/1177883" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:06:17Z", "details": "important" } ], "title": "CVE-2020-25647" }, { "cve": "CVE-2020-27749", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27749" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27749", "url": "https://www.suse.com/security/cve/CVE-2020-27749" }, { "category": "external", "summary": "SUSE Bug 1179264 for CVE-2020-27749", "url": "https://bugzilla.suse.com/1179264" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:06:17Z", "details": "important" } ], "title": "CVE-2020-27749" }, { "cve": "CVE-2020-27779", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2020-27779" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2020-27779", "url": "https://www.suse.com/security/cve/CVE-2020-27779" }, { "category": "external", "summary": "SUSE Bug 1179265 for CVE-2020-27779", "url": "https://bugzilla.suse.com/1179265" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:06:17Z", "details": "important" } ], "title": "CVE-2020-27779" }, { "cve": "CVE-2021-20225", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20225" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20225", "url": "https://www.suse.com/security/cve/CVE-2021-20225" }, { "category": "external", "summary": "SUSE Bug 1182262 for CVE-2021-20225", "url": "https://bugzilla.suse.com/1182262" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:06:17Z", "details": "important" } ], "title": "CVE-2021-20225" }, { "cve": "CVE-2021-20233", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2021-20233" } ], "notes": [ { "category": "general", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2021-20233", "url": "https://www.suse.com/security/cve/CVE-2021-20233" }, { "category": "external", "summary": "SUSE Bug 1182263 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1182263" }, { "category": "external", "summary": "SUSE Bug 1183135 for CVE-2021-20233", "url": "https://bugzilla.suse.com/1183135" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1" }, "products": [ "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-arm64-efi-2.02-19.66.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:grub2-s390x-emu-2.02-19.66.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:grub2-x86_64-xen-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-i386-pc-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-powerpc-ieee1275-2.02-19.66.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-snapper-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-systemd-sleep-plugin-2.02-19.66.1.noarch", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-efi-2.02-19.66.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:grub2-x86_64-xen-2.02-19.66.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2021-03-02T18:06:17Z", "details": "important" } ], "title": "CVE-2021-20233" } ] }
gsd-2021-20225
Vulnerability from gsd
{ "GSD": { "alias": "CVE-2021-20225", "description": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "id": "GSD-2021-20225", "references": [ "https://www.suse.com/security/cve/CVE-2021-20225.html", "https://www.debian.org/security/2021/dsa-4867", "https://access.redhat.com/errata/RHSA-2021:3675", "https://access.redhat.com/errata/RHSA-2021:2790", "https://access.redhat.com/errata/RHSA-2021:2566", "https://access.redhat.com/errata/RHSA-2021:1734", "https://access.redhat.com/errata/RHSA-2021:0704", "https://access.redhat.com/errata/RHSA-2021:0703", "https://access.redhat.com/errata/RHSA-2021:0702", "https://access.redhat.com/errata/RHSA-2021:0701", "https://access.redhat.com/errata/RHSA-2021:0700", "https://access.redhat.com/errata/RHSA-2021:0699", "https://access.redhat.com/errata/RHSA-2021:0698", "https://access.redhat.com/errata/RHSA-2021:0697", "https://access.redhat.com/errata/RHSA-2021:0696", "https://ubuntu.com/security/CVE-2021-20225", "https://advisories.mageia.org/CVE-2021-20225.html", "https://security.archlinux.org/CVE-2021-20225", "https://linux.oracle.com/cve/CVE-2021-20225.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2021-20225" ], "details": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "id": "GSD-2021-20225", "modified": "2023-12-13T01:23:12.247091Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2021-20225", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "grub2", "version": { "version_data": [ { "version_value": "grub 2.06" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-787" } ] } ] }, "references": { "reference_data": [ { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "name": "FEDORA-2021-cab258a413", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/" }, { "name": "GLSA-202104-05", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/202104-05" }, { "name": "https://security.netapp.com/advisory/ntap-20220325-0001/", "refsource": "CONFIRM", "url": "https://security.netapp.com/advisory/ntap-20220325-0001/" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "2.06", "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:8.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2021-20225" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-787" }, { "lang": "en", "value": "CWE-787" } ] } ] }, "references": { "reference_data": [ { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696", "refsource": "MISC", "tags": [ "Issue Tracking", "Third Party Advisory" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696" }, { "name": "FEDORA-2021-cab258a413", "refsource": "FEDORA", "tags": [ "Mailing List", "Third Party Advisory" ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/" }, { "name": "GLSA-202104-05", "refsource": "GENTOO", "tags": [ "Third Party Advisory" ], "url": "https://security.gentoo.org/glsa/202104-05" }, { "name": "https://security.netapp.com/advisory/ntap-20220325-0001/", "refsource": "CONFIRM", "tags": [ "Third Party Advisory" ], "url": "https://security.netapp.com/advisory/ntap-20220325-0001/" } ] } }, "impact": { "baseMetricV2": { "acInsufInfo": false, "cvssV2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0" }, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false }, "baseMetricV3": { "cvssV3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "exploitabilityScore": 0.8, "impactScore": 5.9 } }, "lastModifiedDate": "2022-04-18T19:27Z", "publishedDate": "2021-03-03T17:15Z" } } }
cnvd-2021-16926
Vulnerability from cnvd
Title: grub2缓冲区溢出漏洞(CNVD-2021-16926)
Description:
grub2是GNU社区的一款Linux系统引导程序。
grub2 2.06之前版本存在缓冲区溢出漏洞,该漏洞源于简写形式发现了堆越界写漏洞。目前没有详细的漏洞细节提供。
Severity: 高
Patch Name: grub2缓冲区溢出漏洞(CNVD-2021-16926)的补丁
Patch Description:
grub2是GNU社区的一款Linux系统引导程序。
grub2 2.06之前版本存在缓冲区溢出漏洞,该漏洞源于简写形式发现了堆越界写漏洞。目前没有详细的漏洞细节提供。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description:
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://lists.debian.org/debian-security-announce/2021/msg00048.html
Reference: https://bugzilla.redhat.com/show_bug.cgi?id=1924696
Name | GNU GRUB2 <2.06 |
---|
{ "cves": { "cve": { "cveNumber": "CVE-2021-20225", "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-20225" } }, "description": "grub2\u662fGNU\u793e\u533a\u7684\u4e00\u6b3eLinux\u7cfb\u7edf\u5f15\u5bfc\u7a0b\u5e8f\u3002\n\ngrub2 2.06\u4e4b\u524d\u7248\u672c\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7b80\u5199\u5f62\u5f0f\u53d1\u73b0\u4e86\u5806\u8d8a\u754c\u5199\u6f0f\u6d1e\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002", "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://lists.debian.org/debian-security-announce/2021/msg00048.html", "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e", "number": "CNVD-2021-16926", "openTime": "2021-03-11", "patchDescription": "grub2\u662fGNU\u793e\u533a\u7684\u4e00\u6b3eLinux\u7cfb\u7edf\u5f15\u5bfc\u7a0b\u5e8f\u3002\r\n\r\ngrub2 2.06\u4e4b\u524d\u7248\u672c\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7b80\u5199\u5f62\u5f0f\u53d1\u73b0\u4e86\u5806\u8d8a\u754c\u5199\u6f0f\u6d1e\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002", "patchName": "grub2\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2021-16926\uff09\u7684\u8865\u4e01", "products": { "product": "GNU GRUB2 \u003c2.06" }, "referenceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=1924696", "serverity": "\u9ad8", "submitTime": "2021-03-10", "title": "grub2\u7f13\u51b2\u533a\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2021-16926\uff09" }
ICSA-21-336-06
Vulnerability from csaf_cisa
Notes
{ "document": { "acknowledgments": [ { "organization": "Hitachi Energy", "summary": "reporting to CISA that Transformer APM Edge contains open-source components with these known vulnerabilities" } ], "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited", "tlp": { "label": "WHITE", "url": "https://us-cert.cisa.gov/tlp/" } }, "lang": "en-US", "notes": [ { "category": "general", "text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov", "title": "CISA Disclaimer" }, { "category": "legal_disclaimer", "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", "title": "Legal Notice" }, { "category": "summary", "text": "Successful exploitation of this vulnerability could cause the product to become inaccessible.", "title": "Risk evaluation" }, { "category": "other", "text": "Energy", "title": "Critical infrastructure sectors" }, { "category": "other", "text": "Worldwide", "title": "Countries/areas deployed" }, { "category": "other", "text": "Switzerland", "title": "Company headquarters location" }, { "category": "general", "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.\nCISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.\nOrganizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.", "title": "Recommended Practices" }, { "category": "other", "text": "No known public exploits specifically target this vulnerability. This vulnerability is not exploitable remotely.", "title": "Exploitability" } ], "publisher": { "category": "coordinator", "contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870", "name": "CISA", "namespace": "https://www.cisa.gov/" }, "references": [ { "category": "self", "summary": "ICS Advisory ICSA-21-336-06 JSON", "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-336-06.json" }, { "category": "self", "summary": "ICS Advisory ICSA-21-336-06 Web Version", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-336-06" }, { "category": "external", "summary": "Recommended Practices", "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf" }, { "category": "external", "summary": "Recommended Practices", "url": "https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B" } ], "title": "Hitachi Energy APM Edge", "tracking": { "current_release_date": "2021-12-02T00:00:00.000000Z", "generator": { "engine": { "name": "CISA CSAF Generator", "version": "1.0.0" } }, "id": "ICSA-21-336-06", "initial_release_date": "2021-12-02T00:00:00.000000Z", "revision_history": [ { "date": "2021-12-02T00:00:00.000000Z", "legacy_version": "Initial", "number": "1", "summary": "ICSA-21-336-06 Hitachi Energy APM Edge" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "3.0", "product": { "name": "APM Edge: Version 3.0", "product_id": "CSAFPID-0001" } } ], "category": "product_name", "name": "APM Edge" }, { "branches": [ { "category": "product_version", "name": "2.0", "product": { "name": "APM Edge: Version 2.0", "product_id": "CSAFPID-0002" } } ], "category": "product_name", "name": "APM Edge" }, { "branches": [ { "category": "product_version", "name": "1.0", "product": { "name": "APM Edge: Version 1.0", "product_id": "CSAFPID-0003" } } ], "category": "product_name", "name": "APM Edge" } ], "category": "vendor", "name": "Hitachi Energy" } ] }, "vulnerabilities": [ { "cve": "CVE-2021-3449", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-1971", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "Hitachi Energy is aware of public reports of this vulnerability in the following open-source software components: OpenSSL, LibSSL, libxml2 and GRUB2 bootloader. The vulnerability also affects some APM Edge products. An attacker who successfully exploits this vulnerability could cause the product to become inaccessible. SEE NVD for full Description.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2019-1563", "cwe": { "id": "CWE-327", "name": "Use of a Broken or Risky Cryptographic Algorithm" }, "notes": [ { "category": "summary", "text": "In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of messages to be decrypted, can recover a CMS/PKCS7 transported encryption key or decrypt any RSA encrypted message that was encrypted with the public RSA key, using a Bleichenbacher padding oracle attack. Applications are not affected if they use a certificate together with the private RSA key to the CMS_decrypt or PKCS7_decrypt functions to select the correct recipient info to decrypt. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 3.7, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2019-1549", "cwe": { "id": "CWE-330", "name": "Use of Insufficiently Random Values" }, "notes": [ { "category": "summary", "text": "OpenSSL 1.1.1 introduced a rewritten random number generator (RNG). This was intended to include protection in the event of a fork() system call in order to ensure that the parent and child processes did not share the same RNG state. However this protection was not being used in the default case. A partial mitigation for this issue is that the output from a high precision timer is mixed into the RNG state so the likelihood of a parent and child process sharing state is significantly reduced. If an application already calls OPENSSL_init_crypto() explicitly using OPENSSL_INIT_ATFORK then this problem does not occur at all. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2019-1547", "cwe": { "id": "CWE-1357", "name": "Reliance on Insufficiently Trustworthy Component" }, "notes": [ { "category": "summary", "text": "Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel resistant code paths. However, in some cases, it is possible to construct a group using explicit parameters (instead of using a named curve). In those cases it is possible that such a group does not have the cofactor present. This can occur even where all the parameters match a known named curve. If such a curve is used then OpenSSL falls back to non-side channel resistant code paths which may result in full key recovery during an ECDSA signature operation. In order to be vulnerable an attacker would have to have the ability to time the creation of a large number of signatures where explicit parameters with no co-factor present are in use by an application using libcrypto. For the avoidance of doubt libssl is not vulnerable because explicit parameters are never used. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 4.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-23840", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-23841", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field (which might occur if the issuer field is maliciously constructed). This may subsequently result in a NULL pointer deref and a crash leading to a potential denial of service attack. The function X509_issuer_and_serial_hash() is never directly called by OpenSSL itself so applications are only vulnerable if they use this function directly and they use it on certificates that may have been obtained from untrusted sources. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2017-8872", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "summary", "text": "The htmlParseTryOrFinish function in HTMLparser.c in libxml2 2.9.4 allows attackers to cause a denial of service (buffer over-read) or information disclosure.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 9.1, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2019-20388", "cwe": { "id": "CWE-401", "name": "Missing Release of Memory after Effective Lifetime" }, "notes": [ { "category": "summary", "text": "xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-24977", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "summary", "text": "GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-3516", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "summary", "text": "There\u0027s a flaw in libxml2\u0027s xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-3517", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "summary", "text": "There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most likely impact of this flaw is to application availability, with some potential impact to confidentiality and integrity if an attacker is able to use memory information to further exploit the application.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 8.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-3518", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "summary", "text": "There\u0027s a flaw in libxml2 in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by an application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to confidentiality, integrity, and availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 8.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-3537", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-3541", "cwe": { "id": "CWE-776", "name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)" }, "notes": [ { "category": "summary", "text": "A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-10713", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-14308", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-14309", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "summary", "text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-14310", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "notes": [ { "category": "summary", "text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.0, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-14311", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "notes": [ { "category": "summary", "text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.0, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-15705", "cwe": { "id": "CWE-347", "name": "Improper Verification of Cryptographic Signature" }, "notes": [ { "category": "summary", "text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-15706", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "summary", "text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-15707", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] } ] }
icsa-21-336-06
Vulnerability from csaf_cisa
Notes
{ "document": { "acknowledgments": [ { "organization": "Hitachi Energy", "summary": "reporting to CISA that Transformer APM Edge contains open-source components with these known vulnerabilities" } ], "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Disclosure is not limited", "tlp": { "label": "WHITE", "url": "https://us-cert.cisa.gov/tlp/" } }, "lang": "en-US", "notes": [ { "category": "general", "text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov", "title": "CISA Disclaimer" }, { "category": "legal_disclaimer", "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.", "title": "Legal Notice" }, { "category": "summary", "text": "Successful exploitation of this vulnerability could cause the product to become inaccessible.", "title": "Risk evaluation" }, { "category": "other", "text": "Energy", "title": "Critical infrastructure sectors" }, { "category": "other", "text": "Worldwide", "title": "Countries/areas deployed" }, { "category": "other", "text": "Switzerland", "title": "Company headquarters location" }, { "category": "general", "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.\nCISA also provides a section for control systems security recommended practices on the ICS webpage onus-cert.cisa.gov. Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.", "title": "Recommended Practices" }, { "category": "general", "text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on us-cert.cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.\nOrganizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.", "title": "Recommended Practices" }, { "category": "other", "text": "No known public exploits specifically target this vulnerability. This vulnerability is not exploitable remotely.", "title": "Exploitability" } ], "publisher": { "category": "coordinator", "contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870", "name": "CISA", "namespace": "https://www.cisa.gov/" }, "references": [ { "category": "self", "summary": "ICS Advisory ICSA-21-336-06 JSON", "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2021/icsa-21-336-06.json" }, { "category": "self", "summary": "ICS Advisory ICSA-21-336-06 Web Version", "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-336-06" }, { "category": "external", "summary": "Recommended Practices", "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf" }, { "category": "external", "summary": "Recommended Practices", "url": "https://us-cert.cisa.gov/ics/tips/ICS-TIP-12-146-01B" } ], "title": "Hitachi Energy APM Edge", "tracking": { "current_release_date": "2021-12-02T00:00:00.000000Z", "generator": { "engine": { "name": "CISA CSAF Generator", "version": "1.0.0" } }, "id": "ICSA-21-336-06", "initial_release_date": "2021-12-02T00:00:00.000000Z", "revision_history": [ { "date": "2021-12-02T00:00:00.000000Z", "legacy_version": "Initial", "number": "1", "summary": "ICSA-21-336-06 Hitachi Energy APM Edge" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "3.0", "product": { "name": "APM Edge: Version 3.0", "product_id": "CSAFPID-0001" } } ], "category": "product_name", "name": "APM Edge" }, { "branches": [ { "category": "product_version", "name": "2.0", "product": { "name": "APM Edge: Version 2.0", "product_id": "CSAFPID-0002" } } ], "category": "product_name", "name": "APM Edge" }, { "branches": [ { "category": "product_version", "name": "1.0", "product": { "name": "APM Edge: Version 1.0", "product_id": "CSAFPID-0003" } } ], "category": "product_name", "name": "APM Edge" } ], "category": "vendor", "name": "Hitachi Energy" } ] }, "vulnerabilities": [ { "cve": "CVE-2021-3449", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-1971", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "Hitachi Energy is aware of public reports of this vulnerability in the following open-source software components: OpenSSL, LibSSL, libxml2 and GRUB2 bootloader. The vulnerability also affects some APM Edge products. An attacker who successfully exploits this vulnerability could cause the product to become inaccessible. SEE NVD for full Description.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2019-1563", "cwe": { "id": "CWE-327", "name": "Use of a Broken or Risky Cryptographic Algorithm" }, "notes": [ { "category": "summary", "text": "In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of messages to be decrypted, can recover a CMS/PKCS7 transported encryption key or decrypt any RSA encrypted message that was encrypted with the public RSA key, using a Bleichenbacher padding oracle attack. Applications are not affected if they use a certificate together with the private RSA key to the CMS_decrypt or PKCS7_decrypt functions to select the correct recipient info to decrypt. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 3.7, "baseSeverity": "LOW", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2019-1549", "cwe": { "id": "CWE-330", "name": "Use of Insufficiently Random Values" }, "notes": [ { "category": "summary", "text": "OpenSSL 1.1.1 introduced a rewritten random number generator (RNG). This was intended to include protection in the event of a fork() system call in order to ensure that the parent and child processes did not share the same RNG state. However this protection was not being used in the default case. A partial mitigation for this issue is that the output from a high precision timer is mixed into the RNG state so the likelihood of a parent and child process sharing state is significantly reduced. If an application already calls OPENSSL_init_crypto() explicitly using OPENSSL_INIT_ATFORK then this problem does not occur at all. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2019-1547", "cwe": { "id": "CWE-1357", "name": "Reliance on Insufficiently Trustworthy Component" }, "notes": [ { "category": "summary", "text": "Normally in OpenSSL EC groups always have a co-factor present and this is used in side channel resistant code paths. However, in some cases, it is possible to construct a group using explicit parameters (instead of using a named curve). In those cases it is possible that such a group does not have the cofactor present. This can occur even where all the parameters match a known named curve. If such a curve is used then OpenSSL falls back to non-side channel resistant code paths which may result in full key recovery during an ECDSA signature operation. In order to be vulnerable an attacker would have to have the ability to time the creation of a large number of signatures where explicit parameters with no co-factor present are in use by an application using libcrypto. For the avoidance of doubt libssl is not vulnerable because explicit parameters are never used. Fixed in OpenSSL 1.1.1d (Affected 1.1.1-1.1.1c). Fixed in OpenSSL 1.1.0l (Affected 1.1.0-1.1.0k). Fixed in OpenSSL 1.0.2t (Affected 1.0.2-1.0.2s).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 4.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-23840", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-23841", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field (which might occur if the issuer field is maliciously constructed). This may subsequently result in a NULL pointer deref and a crash leading to a potential denial of service attack. The function X509_issuer_and_serial_hash() is never directly called by OpenSSL itself so applications are only vulnerable if they use this function directly and they use it on certificates that may have been obtained from untrusted sources. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2017-8872", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "summary", "text": "The htmlParseTryOrFinish function in HTMLparser.c in libxml2 2.9.4 allows attackers to cause a denial of service (buffer over-read) or information disclosure.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 9.1, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2019-20388", "cwe": { "id": "CWE-401", "name": "Missing Release of Memory after Effective Lifetime" }, "notes": [ { "category": "summary", "text": "xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-24977", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "summary", "text": "GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-3516", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "summary", "text": "There\u0027s a flaw in libxml2\u0027s xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-3517", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "summary", "text": "There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most likely impact of this flaw is to application availability, with some potential impact to confidentiality and integrity if an attacker is able to use memory information to further exploit the application.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 8.6, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-3518", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "summary", "text": "There\u0027s a flaw in libxml2 in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by an application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to confidentiality, integrity, and availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 8.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-3537", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "summary", "text": "A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest threat from this vulnerability is to system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 5.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-3541", "cwe": { "id": "CWE-776", "name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)" }, "notes": [ { "category": "summary", "text": "A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-10713", "cwe": { "id": "CWE-120", "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2, prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel, an attacker would first need to establish access to the system such as gaining physical access, obtain the ability to alter a pxe-boot network, or have remote access to a networked system with root access. With this access, an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-14308", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "In grub2 versions before 2.06 the grub memory allocator doesn\u0027t check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity, confidentiality and availability impacts during the boot process.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-14309", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "summary", "text": "There\u0027s an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-14310", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "notes": [ { "category": "summary", "text": "There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn\u0027t verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX, leading to read_section_as_string() to an arithmetic overflow, zero-sized allocation and further heap-based buffer overflow.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.0, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-14311", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "notes": [ { "category": "summary", "text": "There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leading to a zero-sized memory allocation with subsequent heap-based buffer overflow.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.0, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-15705", "cwe": { "id": "CWE-347", "name": "Improper Verification of Cryptographic Signature" }, "notes": [ { "category": "summary", "text": "GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported directly into the secure boot database and the GRUB image is booted directly without the use of shim. This issue affects GRUB2 version 2.04 and prior versions.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-15706", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "summary", "text": "GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing, leading to arbitrary code execution and secure boot restriction bypass. This issue affects GRUB2 version 2.04 and prior versions.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-15707", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "summary", "text": "Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-14372", "cwe": { "id": "CWE-184", "name": "Incomplete List of Disallowed Inputs" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Linux kernel lockdown variable content directly into memory. The table is further loaded and executed by the kernel, defeating its Secure Boot lockdown and allowing the attacker to load unsigned code. The highest threat from this vulnerability is to data confidentiality and integrity, as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-25632", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-27749", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that references a variable with a sufficiently large payload, it is possible to overflow the stack buffer, corrupt the stack frame and control execution which could also circumvent Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2020-27779", "cwe": { "id": "CWE-285", "name": "Improper Authorization" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub\u0027s memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-20225", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 6.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] }, { "cve": "CVE-2021-20233", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "summary", "text": "A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on the assumption that expressing a quoted single quote will require 3 characters, while it actually requires 4 characters which allows an attacker to corrupt memory by one byte for each quote in the input. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "title": "Vulnerability Summary" } ], "product_status": { "known_affected": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, "references": [ { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3449" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-1971" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1563" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1549" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-1547" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23841" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-8872" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-20388" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-24977" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3516" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3517" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3518" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3537" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-37182" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3541" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-10713" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14308" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14309" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14310" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14311" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15705" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15706" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-15707" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-14372" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-25632" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27749" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-27779" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20225" }, { "category": "external", "summary": "web.nvd.nist.gov", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-20233" }, { "category": "external", "summary": "www.first.org", "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "remediations": [ { "category": "vendor_fix", "details": "Hitachi Energy recommends users update to Transformer APM Edge v4.0. This version updates the software components to remediate this vulnerability.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Physically protect process control systems from direct access by unauthorized personnel.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Do not directly connect to the Internet.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Separated from other networks by means of a firewall system that has a minimal number of ports exposed.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Process control systems should not be used for Internet surfing, instant messaging, or receiving e-mails.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] }, { "category": "mitigation", "details": "Please see Hitachi Energy advisory 8DBD000057 for additional mitigation and update information.", "product_ids": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ], "url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000057\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch" } ], "scores": [ { "cvss_v3": { "baseScore": 8.2, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.0" }, "products": [ "CSAFPID-0001", "CSAFPID-0002", "CSAFPID-0003" ] } ] } ] }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.